CVE-2006-1844

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2006-1844

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2006-1844.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2006-1844

Downstream

DEBIAN-CVE-2006-1844

Published

2006-04-19T16:06:00Z

Modified

2025-08-09T19:01:26Z

Summary

[none]

Details

The Debian installer for the (1) shadow 4.0.14 and (2) base-config 2.53.10 packages includes sensitive information in world-readable log files, including preseeded passwords and pppoeconf passwords, which might allow local users to gain privileges.

References

http://secunia.com/advisories/19170
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=356939
http://www.osvdb.org/23922

CVE-2006-1844

Affected packages