CVE-2010-4303 Information

Description

Cisco Unified Videoconferencing (UVC) System 5110 and 5115 when the Linux operating system is used uses world-readable permissions for the /etc/shadow file which allows local users to discover encrypted passwords by reading this file aka Bug ID CSCti54043.

Reference

http://seclists.org/fulldisclosure/2010/Nov/167 http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html http://www.trustmatta.com/advisories/MATTA-2010-001.txt