World Readable Permissions in Samba SWAT CGI Logging File

World Readable Permissions in Samba SWAT CGI Logging File

CVE-2000-0936 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.

Learn more about our Web App Pen Testing.