Lucene search

Ubuntu.comUB:CVE-2011-3153

HistoryNov 15, 2011 - 12:00 a.m.

CVE-2011-3153

2011-11-1500:00:00

ubuntu.com

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local
users to read arbitrary files via a symlink attack on ~/.dmrc.

Bugs

<https://bugs.launchpad.net/ubuntu/+source/lightdm/+bug/883865>

OSVersionArchitecturePackageVersionFilename
ubuntu11.10noarchlightdm< 1.0.6-0ubuntu1.1UNKNOWN
ubuntu12.04noarchlightdm< 1.0.6-0ubuntu3UNKNOWN
ubuntu12.10noarchlightdm< 1.0.6-0ubuntu3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	11.10	noarch	lightdm	< 1.0.6-0ubuntu1.1	UNKNOWN
ubuntu	12.04	noarch	lightdm	< 1.0.6-0ubuntu3	UNKNOWN
ubuntu	12.10	noarch	lightdm	< 1.0.6-0ubuntu3	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2011-3153

nvd.nist.gov/vuln/detail/CVE-2011-3153

security-tracker.debian.org/tracker/CVE-2011-3153

ubuntu.com/security/notices/USN-1262-1

www.cve.org/CVERecord?id=CVE-2011-3153

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for UB:CVE-2011-3153