CVE-2000-0936

Samba Web Administration Tool (SWAT) in Samba 2.0.7 installs the cgi.log logging file with world readable permissions, which allows local users to read sensitive information such as user names and passwords.

Date published : 2001-01-22

http://www.securityfocus.com/bid/1874

http://archives.neohapsis.com/archives/bugtraq/2000-10/0430.html