The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x prior to 2.2.7 allow remote malicious users to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 11.10 |
||
canonical ltsp display manager 2.2.6 |
||
canonical ubuntu linux 11.04 |
||
canonical ltsp display manager 2.2.5 |
||
canonical ltsp display manager 2.2.4 |