Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-2945
HistoryAug 30, 2010 - 12:00 a.m.

CVE-2010-2945

2010-08-3000:00:00
ubuntu.com
ubuntu.com
3

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

The default configuration of SLiM before 1.3.2 places ./ (dot slash) at the
beginning of the default_path option, which might allow local users to gain
privileges via a Trojan horse program in the current working directory,
related to slim.conf and cfg.cpp.

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

Related for UB:CVE-2010-2945