Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-727-1
HistoryMar 03, 2009 - 12:00 a.m.

network-manager-applet vulnerabilities

2009-03-0300:00:00
ubuntu.com
27

6 Medium

AI Score

Confidence

Low

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:N/I:C/A:C

0.0004 Low

EPSS

Percentile

9.4%

JSON

Releases

  • Ubuntu 8.10
  • Ubuntu 8.04
  • Ubuntu 7.10

Packages

  • network-manager-applet -

Details

It was discovered that network-manager-applet did not properly enforce
permissions when responding to dbus requests. A local user could perform dbus
queries to view other users’ network connection passwords and pre-shared keys.
(CVE-2009-0365)

It was discovered that network-manager-applet did not properly enforce
permissions when responding to dbus modify and delete requests. A local user
could use dbus to modify or delete other users’ network connections. This issue
only applied to Ubuntu 8.10. (CVE-2009-0578)

OSVersionArchitecturePackageVersionFilename
Ubuntu8.10noarchnetwork-manager-gnome< 0.7~~svn20081020t000444-0ubuntu1.8.10.2UNKNOWN
Ubuntu8.04noarchnetwork-manager-gnome< 0.6.6-0ubuntu3.1UNKNOWN
Ubuntu7.10noarchnetwork-manager-gnome< 0.6.5-0ubuntu11~7.10.1UNKNOWN

Related

fedora 11
centos 2
openvas 36
nessus 27
redhat 2
securityvulns 3
seebug 1
oraclelinux 2
suse 1
ubuntucve 2
osv 1
canvas 1
prion 2
cve 2
ubuntu 1
debian 1
veracode 2
debiancve 2
fedora
fedora
[SECURITY] Fedora 9 Update: NetworkManager-openconnect-0.7.0.99-1.fc9
2009-03-08 19:32:04
[SECURITY] Fedora 9 Update: NetworkManager-0.7.0.99-1.fc9
2009-03-08 19:32:04
[SECURITY] Fedora 9 Update: NetworkManager-openvpn-0.7.0.99-1.fc9
2009-03-08 19:32:04
centos
centos
NetworkManager security update
2009-04-09 09:10:05
NetworkManager security update
2009-03-26 17:13:41
openvas
openvas
SLES10: Security update for NetworkManager
2009-10-13 00:00:00
SLES10: Security update for NetworkManager-gnome
2009-10-13 00:00:00
CentOS Update for NetworkManager CESA-2009:0361 centos5 i386
2011-08-09 00:00:00
nessus
nessus
Fedora 10 : NetworkManager-openconnect-0.7.0.99-1.fc10 / knetworkmanager-0.7-0.8.20080926svn.fc10 / etc (2009-2419)
2009-04-23 00:00:00
CentOS 4 : NetworkManager (CESA-2009:0362)
2009-05-26 00:00:00
SuSE 10 Security Update : NetworkManager-gnome (ZYPP Patch Number 6028)
2009-09-24 00:00:00
redhat
redhat
(RHSA-2009:0361) Moderate: NetworkManager security update
2009-03-25 00:00:00
(RHSA-2009:0362) Moderate: NetworkManager security update
2009-03-25 00:00:00
securityvulns
securityvulns
[USN-727-1] network-manager-applet vulnerabilities
2009-03-04 00:00:00
Gnome network-manager-applet unauthorized access
2010-01-17 00:00:00
[USN-727-2] NetworkManager vulnerability
2009-03-04 00:00:00
seebug
seebug
Ubuntu network-manager-applet错误权限限制漏洞
2009-03-06 00:00:00
oraclelinux
oraclelinux
NetworkManager security update
2009-03-25 00:00:00
NetworkManager security update
2009-03-25 00:00:00
suse
suse
local privilege escalation in dbus-1, hal, NetworkManager, PackageKit, ...
2009-03-17 17:12:10
ubuntucve
ubuntucve
CVE-2009-0365
2009-03-05 00:00:00
CVE-2009-0578
2009-03-05 00:00:00
osv
osv
network-manager network-manager-applet - information disclosure
2009-12-16 00:00:00
canvas
canvas
Immunity Canvas: NETWORKMANAGERUNSECRET
2009-03-05 02:30:00
prion
prion
Design/Logic Flaw
2009-03-05 02:30:00
Design/Logic Flaw
2009-03-05 02:30:00
cve
cve
CVE-2009-0365
2009-03-05 02:30:00
CVE-2009-0578
2009-03-05 02:30:00
ubuntu
ubuntu
NetworkManager vulnerability
2009-03-03 00:00:00
debian
debian
[SECURITY] [DSA 1955-1] New network-manager/network-manager-applet packages fix information disclosure
2009-12-16 17:27:35
veracode
veracode
Information Disclosure
2020-04-10 00:31:47
Privilege Escalation
2020-04-10 00:31:48
debiancve
debiancve
CVE-2009-0365
2009-03-05 02:30:00
CVE-2009-0578
2009-03-05 02:30:00

6 Medium

AI Score

Confidence

Low

6.2 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:N/I:C/A:C

0.0004 Low

EPSS

Percentile

9.4%

JSON
Related for USN-727-1
fedora11centos2openvas36nessus27redhat2securityvulns3seebug1oraclelinux2suse1ubuntucve2osv1canvas1prion2cve2ubuntu1debian1veracode2debiancve2