CVE-2013-0345 Information

Description

varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory which allows local users to obtain sensitive information by reading the files. NOTE: some of these details are obtained from third party information.

Reference

http://www.openwall.com/lists/oss-security/2013/02/22/14 http://www.openwall.com/lists/oss-security/2013/02/23/4 http://www.osvdb.org/90586 http://www.securityfocus.com/bid/58125