CVE-2007-4656

EPSS 0.07%

backup-manager - information disclosure

Published: 9/4/2007Modified: 4/28/2026

Also known as:DEBIAN-CVE-2007-4656

Description

backup-manager-upload in Backup Manager before 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different vulnerability than CVE-2007-2766.

Affected packages (2)

Debian/backup-managerfrom 0, < 0.7.6-3
Debian/backup-managerfrom 0, < 0.5.7-1sarge2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4656