CVE-2011-0703

In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session...

EUVD-2011-0718

Malware in sbrugna...

EUVD-2012-5503

Malware in sbrugna...

EUVD-2014-2910

Malware in sbrugna...

EUVD-2013-4086

Malware in sbrugna...

SUSE CVE-2011-0703

In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session...

SUSE CVE-2014-2886

GKSu 2.0.2, when sudo-mode is not enabled, uses " double quote characters in a gksu-run-helper argument, which allows attackers to execute arbitrary commands in certain situations involving an untrusted substring within this argument, as demonstrated by an untrusted filename encountered during...

gksu-polkit privilege exploit

gksu-polkit is a package for authenticating users to enter commands. A privilege-lifting vulnerability in gksu-polkit version 0.0.3-6.fc18 can be exploited by an attacker to execute arbitrary code with administrative privileges and take control of a vulnerable computer...

CVE-2013-4161

gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue in CVE-2012-5617 but the patch was improperly applied and it did not fixed the security issue...

CVE-2013-4161

gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue in CVE-2012-5617 but the patch was improperly applied and it did not fixed the security issue...

Security feature bypass

gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue in CVE-2012-5617 but the patch was improperly applied and it did not fixed the security issue...

CVE-2013-4161

gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue in CVE-2012-5617 but the patch was improperly applied and it did not fixed the security issue...

CVE-2013-4161

The connected CNVD entry identifies gksu-polkit version 0.0.3-6.fc18 as vulnerable due to a permissive PolicyKit policy configuration that allows privilege escalation to administrative level. This CVE (CVE-2013-4161) is linked to CVE-2012-5617; the documents do not provide a concrete fixed versio...

CVE-2012-5617

gksu-polkit: permissive PolicyKit policy configuration file allows privilege escalation...

CVE-2012-5617

gksu-polkit: permissive PolicyKit policy configuration file allows privilege escalation...

CVE-2012-5617

Technical details about CVE-2012-5617, including affected products, root cause, and remediation, are not provided in the supplied documents. Monitor updates from vendors and security advisories for confirmed impact and fixes.

CVE-2012-5617

gksu-polkit: permissive PolicyKit policy configuration file allows privilege escalation...

gksu-polkit input validation error vulnerability

gksu-polkit is a package for authenticating users to enter commands. An input validation error vulnerability exists in the xauth source file in versions prior to gksu-polkit 0.0.3, which can be exploited by an attacker to compromise an administrator X11 session...

CVE-2011-0703

In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session...

Session fixation

In gksu-polkit before 0.0.3, the source file for xauth may contain arbitrary commands that may allow an attacker to overtake an administrator X11 session...