Directory Traversal with ../ sequences occurs in AccountsService prior to 0.6.50 because of an insufficient path check in user_change_icon_file_authorized_cb() in user.c.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freedesktop accountsservice |