CVE-2012-0032 Information

Description

Red Hat JBoss Operations Network (JON) before 3.0.1 uses 0777 permissions for the root directory when installing a remote client which allows local users to read or modify subdirectories and files within the root directory as demonstrated by obtaining JON credentials.

Reference

http://rhn.redhat.com/errata/RHSA-2012-0406.html https://bugzilla.redhat.com/show_bug.cgi?id=772514