ID CVE-2014-3925
Summary sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux (RHEL) 5 produces an archive with an fstab file potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which might allow remote attackers to obtain sensitive information by leveraging access to a technical-support data stream.
References
Vulnerable Configurations
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:sos:*:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:sos:*:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 06-04-2016 - 12:53)
Impact:
Exploitability:
CWE CWE-255
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
redhat via4
advisories
bugzilla
id 1107751
title backport fstab and grub.conf password stripping from upstream
oval
AND
  • comment Red Hat Enterprise Linux 5 is installed
    oval oval:com.redhat.rhba:tst:20070331001
  • comment sos is earlier than 0:1.7-9.73.el5
    oval oval:com.redhat.rhba:tst:20141200002
  • comment sos is signed with Red Hat redhatrelease key
    oval oval:com.redhat.rhba:tst:20141200003
rhsa
released 2014-09-16
severity None
title RHBA-2014:1200: sos bug fix update (None)
rpms sos-0:1.7-9.73.el5
refmap via4
confirm https://bugzilla.redhat.com/show_bug.cgi?id=1102633
mlist
  • [oss-security] 20140529 CVE request: sos: /etc/fstab collected by sosreport, possibly containing passwords
  • [oss-security] 20140530 Re: CVE request: sos: /etc/fstab collected by sosreport, possibly containing passwords
ubuntu USN-2845-1
Last major update 06-04-2016 - 12:53
Published 01-06-2014 - 04:29
Back to Top