PublicDate: 2006-04-13 10:02:00 UTC
Candidate: CVE-2006-1772
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1772
Description:
 debconf in Debian GNU/Linux, when configuring mnogosearch in the
 mnogosearch-common 3.2.31-1 package, uses the world-readable config.dat
 file instead of the restricted passwords.dat for storing the cleartext
 database administrator password in the
 mnogosearch-common/database_admin_pass record, which allows local users to
 view the password.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_mnogosearch: ignored (reached end-of-life)
edgy_mnogosearch: released (3.2.37-3.1)
feisty_mnogosearch: released (3.2.37-3.1)
gutsy_mnogosearch: released (3.2.37-3.1)
hardy_mnogosearch: released (3.2.37-3.1)
intrepid_mnogosearch: released (3.2.37-3.1)
jaunty_mnogosearch: released (3.2.37-3.1)
karmic_mnogosearch: released (3.2.37-3.1)
devel_mnogosearch: released (3.2.37-3.1)
upstream_mnogosearch: needs-triage