Lucene search
UbuntuUSN-2186-1HistoryApr 30, 2014 - 12:00 a.m.
Date and Time Indicator vulnerability
2014-04-3000:00:00
ubuntu.com
38
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
Releases
- Ubuntu 13.10
Packages
- indicator-datetime - Simple clock
Details
It was discovered that the Date and Time Indicator incorrectly allowed
Evolution to be opened at the greeter screen. An attacker could use this
issue to possibly gain unexpected access to applications such as a web
browser with privileges of the greeter user.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.10 | noarch | indicator-datetime | < 13.10.0+13.10.20131023.2-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | gnome-control-center-datetime | < 13.10.0+13.10.20131023.2-0ubuntu1.1 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu: Security Advisory (USN-2186-1)
2014-05-05 00:00:00
Ubuntu Update for indicator-datetime USN-2186-1
2014-05-05 00:00:00
prion
prion
Sql injection
2014-05-01 17:28:00
securityvulns
securityvulns
Ubuntu Date and Time Indicator privilege escalation
2014-05-02 00:00:00
[USN-2186-1] Date and Time Indicator vulnerability
2014-05-02 00:00:00
ubuntucve
ubuntucve
CVE-2013-7374
2014-04-30 00:00:00
nessus
nessus
Ubuntu 13.10 : indicator-datetime vulnerability (USN-2186-1)
2014-05-01 00:00:00
cve
cve
CVE-2013-7374
2014-05-01 17:28:36
nvd
nvd
CVE-2013-7374
2014-05-01 17:28:36
cvelist
cvelist
CVE-2013-7374
2014-05-01 14:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
Related for USN-2186-1