Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
BID:21244
Info
Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
| Bugtraq ID: | 21244 |
| Class: | Design Error |
| CVE: |
CVE-2006-5965 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 22 2006 12:00AM |
| Updated: | Nov 24 2006 06:50PM |
| Credit: | Secunia Security is credited with the discovery of this vulnerability. |
| Vulnerable: |
PassGo SSO Plus 2.1 32 |
| Not Vulnerable: | |
Discussion
Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
Passgo SSO Plus is prone to a local insecure-default-directory-persmissions vulnerability.
A local attacker could exploit this issue to have arbitrary code execute with elevated privileges.
Passgo SSO Plus 2.1.0.32 is vulnerable; other versions may also be affected.
Passgo SSO Plus is prone to a local insecure-default-directory-persmissions vulnerability.
A local attacker could exploit this issue to have arbitrary code execute with elevated privileges.
Passgo SSO Plus 2.1.0.32 is vulnerable; other versions may also be affected.
Exploit / POC
Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution / Fix
Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
References
Passgo SSO Plus Local Insecure Default Directory Permisions Vulnerability
References:
References:
- Vendor Homepage (SSOPlus)