CVE-2012-0961

Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16~exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable permissions for /var/log/apt/term.log, which allows local users to obtain sensitive shell information by reading the log file.

Published: Dec 26, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-0961
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
debian / apt	0.9.7	0.9.7.x
debian / advanced_package_tool	0.8.16	0.8.16.x

http://osvdb.org/88380
http://secunia.com/advisories/51568
http://www.securityfocus.com/bid/56917
http://www.ubuntu.com/usn/USN-1662-1

Vulnerability Database

CVE-2012-0961