Weak Permissions for /dev/systty Device File in Plymouth-Pretrigger.sh Vulnerability

CVE-2010-4176 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users.

Learn more about our Cis Benchmark Audit For Fedora Family Linux.