Description
mysqld in MySQL 3.21 creates log files with world-readable permissions, which allows local users to obtain passwords for users who are added to the user database.
Remediation
References
Related Vulnerabilities
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-2138)
silverstripeCMS Credentials Management Errors Vulnerability (CVE-2010-5092)
WordPress 2.0.9 Multiple Vulnerabilities (2.0 - 2.0.9)
Ruby Resource Management Errors Vulnerability (CVE-2008-3656)
WordPress Plugin WordPress Popular Posts TimThumb Arbitrary File Upload (2.1.4)