Lucene search

PRIOn knowledge basePRION:CVE-2011-0727

HistoryMar 31, 2011 - 10:55 p.m.

Design/Logic Flaw

2011-03-3122:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.3%

JSON

GNOME Display Manager (gdm) 2.x before 2.32.1 allows local users to change the ownership of arbitrary files via a symlink attack on a (1) dmrc or (2) face icon file under /var/cache/gdm/.

CPENameOperatorVersion
gdmeq2.5
gdmeq2.2
gdmeq2.30
gdmeq2.25
gdmeq2.19
gdmeq2.22
gdmeq2.16
gdmeq2.13
gdmeq2.15
gdmeq2.4

Name	Operator	Version
gdm	eq	2.5
gdm	eq	2.2
gdm	eq	2.30
gdm	eq	2.25
gdm	eq	2.19
gdm	eq	2.22
gdm	eq	2.16
gdm	eq	2.13
gdm	eq	2.15
gdm	eq	2.4

Rows per page:

1-10 of 271

References

ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.1.news

mail.gnome.org/archives/gdm-list/2011-March/msg00020.html

secunia.com/advisories/43714

secunia.com/advisories/43854

secunia.com/advisories/44021

securitytracker.com/id?1025264

www.debian.org/security/2011/dsa-2205

www.mandriva.com/security/advisories?name=MDVSA-2011:070

www.redhat.com/support/errata/RHSA-2011-0395.html

www.securityfocus.com/bid/47063

www.ubuntu.com/usn/USN-1099-1

www.vupen.com/english/advisories/2011/0786

www.vupen.com/english/advisories/2011/0787

www.vupen.com/english/advisories/2011/0797

www.vupen.com/english/advisories/2011/0847

www.vupen.com/english/advisories/2011/0911

bugzilla.redhat.com/show_bug.cgi?id=688323

exchange.xforce.ibmcloud.com/vulnerabilities/66377

lists.fedoraproject.org/pipermail/package-announce/2011-April/057333.html

lists.fedoraproject.org/pipermail/package-announce/2011-April/057931.html

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.3%

JSON

Related for PRION:CVE-2011-0727