CVE-2007-6283
Published: 18 December 2007
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.
Notes
Author | Note |
---|---|
jdstrand | RedHat specific /etc/bind/rndc.key is -rw-r----- bind:bind for all Ubuntu releases |