CVE-2012-4430

EPSS 0.61%

bacula - information disclosure

Published: 10/10/2012Modified: 4/28/2026

Description

The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.

Affected packages (2)

Debian/baculafrom 0, < 5.2.6+dfsg-4
Debian/baculafrom 0, < 5.0.2-2.2+squeeze1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4430