CVE-2012-4430

EPSS 0.61%

bacula - information disclosure

發布日:2012/10/10修改日:2026/4/28

也稱為:DEBIAN-CVE-2012-4430

描述

The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.

受影響套件(2)

Debian/baculafrom 0, < 5.2.6+dfsg-4
Debian/baculafrom 0, < 5.0.2-2.2+squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4430