CVE Vulnerabilities

CVE-2012-0863

Published: Apr 30, 2012 | Modified: Dec 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Mumble 1.2.3 and earlier uses world-readable permissions for .local/share/data/Mumble/.mumble.sqlite files in home directories, which might allow local users to obtain a cleartext password and configuration data by reading a file.

Affected Software

Name Vendor Start Version End Version
Mumble Mumble * 1.2.3 (including)
Mumble Mumble 1.2.0 (including) 1.2.0 (including)
Mumble Mumble 1.2.2 (including) 1.2.2 (including)
Mumble Ubuntu devel *
Mumble Ubuntu hardy *
Mumble Ubuntu lucid *
Mumble Ubuntu maverick *
Mumble Ubuntu natty *
Mumble Ubuntu oneiric *

References