Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ltsp ldm vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-20373
LTSP LDM up to and including 2.18.06 allows fat-client root access because the LDM_USERNAME variable may have an empty value if the user's shell lacks support for Bourne shell syntax. This is related to a run-x-session script.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Ltsp Ldm
10
CVSSv2
CVE-2012-1166
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x prior to 2.2.7 allow remote malicious users to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.
Canonical Ubuntu Linux 11.10
Canonical Ltsp Display Manager 2.2.6
Canonical Ubuntu Linux 11.04
Canonical Ltsp Display Manager 2.2.5
Canonical Ltsp Display Manager 2.2.4
4.8
CVSSv2
CVE-2008-1293
ldm in Linux Terminal Server Project (LTSP) 0.99 and 2 passes the -ac option to the X server on each LTSP client, which allows remote malicious users to connect to this server via TCP port 6006 (aka display :6).
Ltsp Linux Terminal Server Project 0.99
Ltsp Linux Terminal Server Project 2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started