Race condition vulnerability in VladTheEnterprising gem 0.2 allows local users to obtain sensitive information

Race condition vulnerability in VladTheEnterprising gem 0.2 allows local users to obtain sensitive information

CVE-2014-4995 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

Race condition in lib/vlad/dba/mysql.rb in the VladTheEnterprising gem 0.2 for Ruby allows local users to obtain sensitive information by reading the MySQL root password from a temporary file before it is removed.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.