Unrated severityNVD Advisory· Published Nov 21, 2008· Updated Apr 23, 2026
CVE-2008-5188
CVE-2008-5188
Description
The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process.
Affected products
16cpe:2.3:a:ecryptfs:ecryptfs_utils:53:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:ecryptfs:ecryptfs_utils:53:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:45:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:46:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:47:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:48:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:49:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:50:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:51:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:54:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:55:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:56:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:57:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:58:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:59:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:60:*:*:*:*:*:*:*
- cpe:2.3:a:ecryptfs:ecryptfs_utils:61:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- osvdb.org/49334nvd
- osvdb.org/50353nvd
- osvdb.org/50354nvd
- osvdb.org/50355nvd
- rhn.redhat.com/errata/RHSA-2009-1307.htmlnvd
- secunia.com/advisories/32382nvd
- secunia.com/advisories/36552nvd
- www.openwall.com/lists/oss-security/2008/10/23/3nvd
- www.openwall.com/lists/oss-security/2008/10/29/4nvd
- www.openwall.com/lists/oss-security/2008/10/29/7nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/46073nvd
- launchpad.net/bugs/287908nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9607nvd
News mentions
0No linked articles in our index yet.