Published: 22/05/2014 Updated: 18/07/2014

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and previous versions, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT from CVE-2012-0943 per ADT1/ADT2 due to different codebases and affected versions. CVE-2012-0943 is used for the guest-account issue.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical ubuntu linux 10.10
gdm-guest-session project gdm-guest-session 0.22
gdm-guest-session project gdm-guest-session 0.21
gdm-guest-session project gdm-guest-session 0.20
canonical ubuntu linux 10.04
gdm-guest-session project gdm-guest-session 0.23
canonical ubuntu linux 11.04
gdm-guest-session project gdm-guest-session

CWE-264 https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/953044 http://ubuntu.com/usn/usn-1399-1 https://launchpadlibrarian.net/96474113/gdm-guest-session.secure-cleanup.debdiff https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-6648

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect