CVE-2008-6756 Information

Description

ZoneMinder 1.23.3 on Gentoo Linux uses 0644 permissions for /etc/zm.conf which allows local users to obtain the database username and password by reading this file.

Reference

http://bugs.gentoo.org/show_bug.cgi?id=250715 https://exchange.xforce.ibmcloud.com/vulnerabilities/50325