Podatność CVE-2009-0365


Publikacja: 2009-03-04   Modyfikacja: 2012-02-13

Opis:
nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an incorrect deny setting, which allows local users to discover (1) network connection passwords and (2) pre-shared keys via calls to the GetSecrets method in the dbus request handler.

Typ:

CWE-264

(Permissions, Privileges, and Access Controls)

Producent: Ubuntu
Produkt: Ubuntu linux 
Wersje:
8.10
8.04
7.10
6.06

CVSS2 => (AV:L/AC:L/Au:S/C:C/I:N/A:N)

Ogólna skala CVSS
Znaczenie
Łatwość wykorzystania
4.6/10
6.9/10
3.1/10
Wymagany dostęp
Złożoność ataku
Autoryzacja
Lokalny
Niska
Jednorazowa
Wpływ na poufność
Wpływ na integralność
Wpływ na dostępność
Pełny
Brak
Brak

 Referencje:
http://www.securityfocus.com/bid/33966
https://bugzilla.redhat.com/show_bug.cgi?id=487752
https://bugzilla.redhat.com/show_bug.cgi?id=487722
http://xforce.iss.net/xforce/xfdb/49062
http://www.ubuntu.com/usn/USN-727-2
http://www.ubuntu.com/usn/USN-727-1
http://www.securitytracker.com/id?1021908
http://www.redhat.com/support/errata/RHSA-2009-0362.html
http://www.redhat.com/support/errata/RHSA-2009-0361.html
http://www.debian.org/security/2009/dsa-1955
http://svn.gnome.org/viewvc/network-manager-applet?view=revision&revision=1207
http://svn.gnome.org/viewvc/network-manager-applet/trunk/nm-applet.conf?r1=1133&r2=1207&pathrev=1207
http://securitytracker.com/id?1021911
http://securitytracker.com/id?1021910
http://secunia.com/advisories/34473
http://secunia.com/advisories/34177
http://secunia.com/advisories/34067
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10828
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html

Podobne CVE
CVE-2017-14461
A specially crafted email delivered over SMTP and passed on to Dovecot by MTA can trigger an out of bounds read resulting in potential sensitive information disclosure and denial of service. In order to trigger this vulnerability, an attacker needs t...
CVE-2018-7584
In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper.c. This ...
CVE-2015-5479
The ff_h263_decode_mba function in libavcodec/ituh263dec.c in Libav before 11.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a file with crafted dimensions.
CVE-2015-1322
Directory traversal vulnerability in the Ubuntu network-manager package for Ubuntu (vivid) before 0.9.10.0-4ubuntu15.1, Ubuntu 14.10 before 0.9.8.8-0ubuntu28.1, and Ubuntu 14.04 LTS before 0.9.8.8-0ubuntu7.1 allows local users to change the modem dev...
CVE-2015-2285
The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privileges via a crafted file in /run/user/*/upstart/sessi...
CVE-2015-2150
Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not properly restrict access to PCI command registers, which might allow local guest OS users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) mem...
CVE-2014-1424
apparmor_parser in the apparmor package before 2.8.95~2430-0ubuntu5.1 in Ubuntu 14.04 allows attackers to bypass AppArmor policies via unspecified vectors, related to a "miscompilation flaw."
CVE-2014-0476
The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerability when /tmp is not mounted with the noexec option.

Copyright 2019, cxsecurity.com

 

Back to Top