Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-1709
HistoryMay 31, 2011 - 12:00 a.m.

CVE-2011-1709

2011-05-3100:00:00
ubuntu.com
ubuntu.com
5

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables
execution of a web browser with the uid of the gdm account, which allows
local users to gain privileges via vectors involving the
x-scheme-handler/http MIME type.

Notes

Author Note
jdstrand Ubuntu 11.04 is affected, but requires a non-standard polickit configuration
OSVersionArchitecturePackageVersionFilename
ubuntu11.04noarchgdm< 2.32.1-0ubuntu3.2UNKNOWN

Related

cve 1
debiancve 1
securityvulns 2
openvas 4
prion 1
nessus 3
ubuntu 1
fedora 1
cvelist 1
cve
cve
CVE-2011-1709
2011-06-14 17:55:00
debiancve
debiancve
CVE-2011-1709
2011-06-14 17:55:00
securityvulns
securityvulns
Gnome GDM information leak
2011-06-02 00:00:00
[USN-1142-1] GDM vulnerability
2011-06-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1142-1)
2011-06-06 00:00:00
Ubuntu Update for gdm USN-1142-1
2011-06-06 00:00:00
Fedora Update for gdm FEDORA-2011-7822
2011-07-12 00:00:00
prion
prion
Design/Logic Flaw
2011-06-14 17:55:00
nessus
nessus
Fedora 15 : gdm-3.0.4-1.fc15 (2011-7822)
2011-06-07 00:00:00
Ubuntu 11.04 : gdm vulnerability (USN-1142-1)
2011-06-13 00:00:00
openSUSE Security Update : gdm (openSUSE-SU-2011:0581-1)
2014-06-13 00:00:00
ubuntu
ubuntu
GDM vulnerability
2011-06-01 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: gdm-3.0.4-1.fc15
2011-06-07 04:42:44
cvelist
cvelist
CVE-2011-1709
2011-06-14 17:00:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2011-1709
cve1debiancve1securityvulns2openvas4prion1nessus3ubuntu1fedora1cvelist1