Weak Permissions in rsyslog Allow Local Users to Access Sensitive Information in /var/log/cron

Weak Permissions in rsyslog Allow Local Users to Access Sensitive Information in /var/log/cron

CVE-2015-3243 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron.

Learn more about our User Device Pen Test.