41 matches found
EUVD-2012-0966
Malware in sbrugna...
EUVD-2013-4217
Malware in sbrugna...
EUVD-2011-3120
Malware in sbrugna...
SUSE CVE-2011-3153
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...
SUSE CVE-2013-4331
Light Display Manager aka LightDM 1.4.x before 1.4.3, 1.6.x before 1.6.2, and 1.7.x before 1.7.14 uses 0664 permissions for the temporary .Xauthority file, which allows local users to obtain sensitive information by reading the file...
SUSE CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
DEBIAN-CVE-2018-20781
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext...
CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
UBUNTU-CVE-2015-8316
Array index error in LightDM aka Light Display Manager 1.14.3, 1.16.x before 1.16.6 when the XDMCP server is enabled allows remote attackers to cause a denial of service process crash via an XDMCP request packet with no address...
UBUNTU-CVE-2015-8308
LXDM before 0.5.2 did not start X server with -auth, which allows local users to bypass authentication with X connections...
CVE-2012-0943
debian/guest-account in Light Display Manager lightdm 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT per ADT1/ADT2 due to different codebases and...
Session fixation
debian/guest-account in Light Display Manager lightdm 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT per ADT1/ADT2 due to different codebases and...
CVE-2012-0943
debian/guest-account in Light Display Manager lightdm 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT per ADT1/ADT2 due to different codebases and...
CVE-2012-0943
debian/guest-account in Light Display Manager lightdm 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT per ADT1/ADT2 due to different codebases and...
CVE-2012-0943
CVE-2012-0943 concerns debian/guest-account in LightDM (lightdm) 1.0.x before 1.0.6 and 1.1.x before 1.1.7, as used in Ubuntu 11.10. Affected component: guest-account cleanup in LightDM; root cause described as a vulnerability allowing local users to delete arbitrary files via a space in the name...
CVE-2011-3153
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...
CVE-2011-3153
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...
DEBIAN-CVE-2011-3153
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...
Code injection
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...
CVE-2011-3153
dmrc.c in Light Display Manager aka LightDM before 1.1.1 allows local users to read arbitrary files via a symlink attack on /.dmrc...