USN-727-1 -- network-manager-applet vulnerabilitiesID: oval:org.secpod.oval:def:700327 | Date: (C)2011-05-13 (M)2021-09-12 |
Class: PATCH | Family: unix |
It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view other users" network connection passwords and pre-shared keys. It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus modify and delete requests. A local user could use dbus to modify or delete other users" network connections. This issue only applied to Ubuntu 8.10
Platform: |
Ubuntu 7.10 |
Ubuntu 8.10 |
Ubuntu 8.04 |
Product: |
network-manager-applet |