CVE-2000-0361 Information

Description

The PPP wvdial.lxdialog script in wvdial 1.4 and earlier creates a .config file with world readable permissions which allows a local attacker in the dialout group to access login and password information.

Reference

http://www.novell.com/linux/security/advisories/suse_security_announce_35.html