Description
StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
References (6)
Core 6
Core References
Issue Tracking x_refsource_misc
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332434
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.us.debian.org/security/2006/dsa-1022
Patch x_refsource_confirm
http://sourceforge.net/project/shownotes.php?release_id=352676
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/19489
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17025
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.securityfocus.com/advisories/9384
Scores
EPSS
0.0006
EPSS Percentile
18.4%
Details
Status
published
Products (30)
storebackup/storebackup
1.1
storebackup/storebackup
1.2
storebackup/storebackup
1.3
storebackup/storebackup
1.4
storebackup/storebackup
1.5
storebackup/storebackup
1.6
storebackup/storebackup
1.7
storebackup/storebackup
1.8
storebackup/storebackup
1.8.1
storebackup/storebackup
1.9
... and 20 more
Published
Oct 05, 2005
Tracked Since
Feb 18, 2026