2 matches found
CVE-2013-1063
usb-creator 0.2.47 before 0.2.47.1, 0.2.40 before 0.2.40ubuntu2, and 0.2.38 before 0.2.38.2 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a 1...
CVE-2013-1063
CVE-2013-1063 affects usb-creator versions before 0.2.47.1 and earlier Ubuntu builds (0.2.40ubuntu2, 0.2.38.2). The flaw arises from improper D-Bus communication with a Polkit authority, enabling local users to bypass access restrictions via a PolkitUnixProcess PolkitSubject race conditioned by a...