PRIOn knowledge basePRION:CVE-2012-6655

HistoryNov 27, 2019 - 6:15 p.m.

Code injection

2019-11-2718:15:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

An issue exists AccountService 0.6.37 in the user_change_password_authorized_cb() function in user.c which could let a local users obtain encrypted passwords.

CPENameOperatorVersion
accountsserviceeq0.6.37
debian_linuxeq8.0
debian_linuxeq9.0
debian_linuxeq10.0
opensuseeq13.1
enterprise_linuxeq7.0

Name	Operator	Version
accountsservice	eq	0.6.37
debian_linux	eq	8.0
debian_linux	eq	9.0
debian_linux	eq	10.0
opensuse	eq	13.1
enterprise_linux	eq	7.0

References

www.openwall.com/lists/oss-security/2014/08/16/7

www.securityfocus.com/bid/69245

bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-6655

bugzilla.suse.com/show_bug.cgi?id=CVE-2012-6655

exchange.xforce.ibmcloud.com/vulnerabilities/95325

security-tracker.debian.org/tracker/CVE-2012-6655