World-readable and World-writable Permissions in Raritan Dominion SX Console Servers

World-readable and World-writable Permissions in Raritan Dominion SX Console Servers

CVE-2005-2136 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Raritan Dominion SX (DSX) Console Servers DSX16, DSX32, DSX4, DSX8, and DSXA-48 set (1) world-readable permissions for /etc/shadow and (2) world-writable permissions for /bin/busybox, which allows local users to obtain hashed passwords or execute arbitrary code as other users.

Learn more about our Cis Benchmark Audit For Server Software.