GDM prior to 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnome gdm 2.4.1.4 |
||
gnome gdm 2.4.1.5 |
||
gnome gdm 2.4.1 |
||
gnome gdm 2.4.1.1 |
||
gnome gdm 2.4.1.2 |
||
gnome gdm 2.4.1.3 |
||
gnome gdm 2.4.1.6 |
||
redhat kdebase 2.4.0.7.13 |
||
redhat kdebase 2.4.1.3.5 |