[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247621

 
 

909

 
 

194512

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-0578Date: (C)2009-03-04   (M)2023-12-22


GNOME NetworkManager before 0.7.0.99 does not properly verify privileges for dbus (1) modify and (2) delete requests, which allows local users to change or remove the network connections of arbitrary users via unspecified vectors related to org.freedesktop.NetworkManagerUserSettings and at_console.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.2
Exploit Score: 3.1
Impact Score: 9.2
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: SINGLE
Confidentiality: NONE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1021909
BID-33966
SECUNIA-34067
SECUNIA-34473
RHSA-2009:0361
SUSE-SA:2009:013
SUSE-SR:2009:009
USN-727-1
https://bugzilla.redhat.com/show_bug.cgi?id=487752
networkmanager-dbus-security-bypass(49063)
oval:org.mitre.oval:def:8931

CPE    1
cpe:/o:ubuntu:ubuntu_linux:8.10
CWE    1
CWE-264
OVAL    16
oval:org.secpod.oval:def:400083
oval:org.secpod.oval:def:101933
oval:org.secpod.oval:def:101402
oval:org.secpod.oval:def:101556
...

© SecPod Technologies