2 matches found
CVE-2010-0750
PolicyKit (libpolkit) vulnerability CVE-2010-0750 affects pkexec in PolicyKit 0.96, where error messages in pkexec disclose the existence of local files via the argument. A local attacker could determine whether arbitrary files exist. The issue is documented across multiple sources (SUSE, Gentoo ...
CVE-2008-1658
The CVE-2008-1658 entry describes a format string vulnerability in PolicyKit’s grant helper (polkit-grant-helper.c) affecting PolicyKit 0.7 and earlier. The vulnerability can cause a denial of service (crash) and may allow arbitrary code execution via crafted format strings in a password. Public ...