Computer Security
[EN] securityvulns.ru no-pyccku


Ubuntu Date and Time Indicator privilege escalation
Published:02.05.2014
Source:
SecurityVulns ID:13700
Type:local
Threat Level:
4/10
Description:It's possible to run applications as greeter user.
Affected:UBUNTU : indicator-datetime 13.10
CVE:CVE-2013-7374 (The Ubuntu Date and Time Indicator (aka indicator-datetime) 13.10.0+13.10.x before 13.10.0+13.10.20131023.2-0ubuntu1.1 does not properly restrict access to Evolution, which allows local users to bypass the greeter screen restrictions by clicking the date.)
Original documentdocumentUBUNTU, [USN-2186-1] Date and Time Indicator vulnerability (02.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod