Lucene search

K
ubuntuUbuntuUSN-1399-1
HistoryMar 13, 2012 - 12:00 a.m.

gdm-guest-session vulnerability

2012-03-1300:00:00
ubuntu.com
45

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.6%

Releases

  • Ubuntu 11.04
  • Ubuntu 10.10
  • Ubuntu 10.04

Packages

  • gdm-guest-session - gdm extension for guest session

Details

Ryan Lortie discovered that gdm-guest-session improperly cleaned out
certain guest session files. A local attacker could use this issue to
delete arbitrary files.

OSVersionArchitecturePackageVersionFilename
Ubuntu11.04noarchgdm-guest-session< 0.24ubuntu0.1UNKNOWN
Ubuntu10.10noarchgdm-guest-session< 0.17ubuntu0.1UNKNOWN
Ubuntu10.04noarchgdm-guest-session< 0.15ubuntu0.1UNKNOWN

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.6%