RSS   Podatności dla 'Ifcfg-rh plug-in'   RSS

2011-11-04
 
CVE-2011-3364

CWE-Other
 

 
Incomplete blacklist vulnerability in the svEscape function in settings/plugins/ifcfg-rh/shvar.c in the ifcfg-rh plug-in for GNOME NetworkManager 0.9.1, 0.9.0, 0.8.1, and possibly other versions, when PolicyKit is configured to allow users to create new connections, allows local users to execute arbitrary commands via a newline character in the name for a new network connection, which is not properly handled when writing to the ifcfg file.

 

 >>> Vendor: Gnome 89 Produkty
Gnumeric
GDM
Gnome libs
Gnome-lokkit
Esound
Gnorpm
Libgtop daemon
Nautilus
Evolution
Bonobo
Gnome-terminal
Gtkhtml
EOG
Balsa
Batalla naval
Gdkpixbuf
GPDF
Libvte4
Libzvt2
Epiphany
Gedit
Networkmanager
Libgda2
DIA
Dwarf http server
Screensaver
Dhcdbd
Libgsf
Libsoup
Gconf
Power manager
Ekiga
Gnome-vfs
Gnome
YELP
GLIB
ORCA
Vinagre
Rhythmbox
Nautilus-python
Evolution-data-server
Gupnp
Gmime
Evince
Gnome-shell
Tomboy
Ifcfg-rh plug-in
Empathy
Update-manager-core
Gdk-pixbuf
Libgdata
At-spi2-atk
Librsvg
Libsocialweb
Gnome-keyring
Gnome display manager
Gnome online accounts
Geary
GCAB
VALA
Byzanz
Eye of gnome
Shotwell
Gtk-vnc
Libcroco
Gnome-session
Libgxps
Librest
Gthumb
Seahorse
GVFS
Gnome-desktop
Evolution-ews
Network manager vpnc
Gnome-system-log
Gnome-font-viewer
Gnome keyring
Evolution data server
File-roller
Glib-networking
Gnome-autoar
Libgrss
Libgda
Libgfbgraph
Grilo
Evolution-rss
Libzapojit
Ocrfeeder
Caribou


Copyright 2024, cxsecurity.com

 

Back to Top