CVE-2009-1296

ecryptfs-utils 73-0ubuntu6.1 - Unauthorized Exposure of Mount Passphrase in Installation Logs

Title source: llm
STIX 2.1

Description

The eCryptfs support utilities (ecryptfs-utils) 73-0ubuntu6.1 on Ubuntu 9.04 stores the mount passphrase in installation logs, which might allow local users to obtain access to the filesystem by reading the log files from disk. NOTE: the log files are only readable by root.

References (4)

Core 4
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/35383
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/usn-783-1
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1022347
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51191

Scores

EPSS 0.0029
EPSS Percentile 21.1%

Details

CWE
CWE-200
Status published
Products (2)
ubuntu/73-oubuntu 6.1
ubuntu/ubuntu 9.0.4
Published Jun 09, 2009
Tracked Since Feb 18, 2026