Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.3
CVSSv3

CVE-2012-6655

Published: 27/11/2019 Updated: 18/08/2020
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8
VMScore: 188
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Accountsservice Project

Vulnerability Summary

An issue exists AccountService 0.6.37 in the user_change_password_authorized_cb() function in user.c which could let a local users obtain encrypted passwords.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

accountsservice project accountsservice 0.6.37

opensuse opensuse 13.1

debian debian linux 8.0

debian debian linux 9.0

debian debian linux 10.0

redhat enterprise linux 7.0

Vendor Advisories

Debian CVElist Bug Report Logs: accountsservice: CVE-2012-6655: passes (encrypted) passwords as commandline arguments
Debian Bug report logs - #757912 accountsservice: CVE-2012-6655: passes (encrypted) passwords as commandline arguments Package: accountsservice; Maintainer for accountsservice is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Source for accountsservice is src:accountsservice (PTS, buildd, p ...

Github Repositories

https://github.com/perlogix/cmon

NIST Information Security Continuous Monitoring (ISCM) and configuration baseline data collector

cmon Table of Contents Overview Example JSON Output Install Install Dependencies Server Client Getting Started Vagrant Command-Line Arguments Configuration Vagrant Platforms Tested On Overview NIST Information Security Continuous Monitoring (ISCM) and configuration baseline data collector Great for keeping track of elastic environments, auditing or migrating servers

https://github.com/yeticloud/yeti-discover

NIST Information Security Continuous Monitoring (ISCM) and configuration baseline data collector

cmon Table of Contents Overview Example JSON Output Install Install Dependencies Server Client Getting Started Vagrant Command-Line Arguments Configuration Vagrant Platforms Tested On Overview NIST Information Security Continuous Monitoring (ISCM) and configuration baseline data collector Great for keeping track of elastic environments, auditing or migrating servers

References

CWE-732https://exchange.xforce.ibmcloud.com/vulnerabilities/95325https://security-tracker.debian.org/tracker/CVE-2012-6655http://www.openwall.com/lists/oss-security/2014/08/16/7http://www.securityfocus.com/bid/69245https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-6655https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-6655https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757912https://nvd.nist.govhttps://github.com/perlogix/cmon
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook