VULHUB ™

Chili!Soft ASP's installation process creates and sets many sensitive files world-readable (mode 666), including files which contain user and administration passwords and other potentially sensitive information. A remote attacker could request these files via a URL submitted to the server. Properly exploited, this information could allow an attacker to compromise root.

Chili!Soft ASP's installation process creates and sets many sensitive files world-readable (mode 666), including files which contain user and administration passwords and other potentially sensitive information. A remote attacker could request these files via a URL submitted to the server. Properly exploited, this information could allow an attacker to compromise root.