CVE-2011-1709

Published: Jun 14, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.2.news

x_refsource_CONFIRM

http://git.gnome.org/browse/gdm/commit/?id=d13dd72531599ab7e4c747db3b58a8c17753e08d

x_refsource_CONFIRM

44797

third-party-advisory

x_refsource_SECUNIA

FEDORA-2011-7822

vendor-advisory

x_refsource_FEDORA

USN-1142-1

vendor-advisory

x_refsource_UBUNTU

48084

vdb-entry

x_refsource_BID

openSUSE-SU-2011:0581

vendor-advisory

x_refsource_SUSE

44808

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=709139

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-1709

Description

Affected Products

References