{"id":"CVE-2006-1844","details":"The Debian installer for the (1) shadow 4.0.14 and (2) base-config 2.53.10 packages includes sensitive information in world-readable log files, including preseeded passwords and pppoeconf passwords, which might allow local users to gain privileges.","modified":"2026-04-10T03:38:25.083652Z","published":"2006-04-19T16:06:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/19170"},{"type":"FIX","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=356939"},{"type":"FIX","url":"http://www.osvdb.org/23922"}],"schema_version":"1.7.5"}