USN-727-1 -- network-manager-applet vulnerabilities| ID: oval:org.secpod.oval:def:700327 | Date: (C)2011-05-13 (M)2021-09-12 |
| Class: PATCH | Family: unix |
It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view other users" network connection passwords and pre-shared keys. It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus modify and delete requests. A local user could use dbus to modify or delete other users" network connections. This issue only applied to Ubuntu 8.10
| Platform: |
| Ubuntu 7.10 |
| Ubuntu 8.10 |
| Ubuntu 8.04 |
| Product: |
| network-manager-applet |
