CVE-2010-3912

Description

The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not "disguise passwords" in configuration files, which has unknown impact and attack vectors.

Affected products

Novell / suse_linux10 – 10
Novell / suse_linux11 – 11

References

MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/64690
VENDOR_ADVISORYhttp://secunia.com/advisories/42877
MISChttp://osvdb.org/70405
VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2011/0076