Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to "echoing."
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2010-02-25 00:30
Updated : 2024-02-04 17:54
NVD link : CVE-2010-0119
Mitre link : CVE-2010-0119
CVE.ORG link : CVE-2010-0119
JSON object : View
Products Affected
freebsd
- freebsd
becauseinter
- bournal
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor