Lucene search

[email protected]CVE-2010-0750

HistoryApr 06, 2010 - 4:30 p.m.

CVE-2010-0750

2010-04-0616:30:00

CWE-200

[email protected]

web.nvd.nist.gov

cve-2010-0750

pkexec.c

libpolkit

policykit 0.96

local users

arbitrary files

existence

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON

pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users to determine the existence of arbitrary files via the argument.

Affected configurations

NVD

Node

freedesktoppolicykitMatch0.96

CPENameOperatorVersion
freedesktop:policykitfreedesktop policykiteq0.96

CPE	Name	Operator	Version
freedesktop:policykit	freedesktop policykit	eq	0.96

References

bugs.freedesktop.org/show_bug.cgi?id=26982

cgit.freedesktop.org/PolicyKit/commit/?id=14bdfd816512a82b1ad258fa143ae5faa945df8a

marc.info/?l=oss-security&m=127014095301235&w=2

marc.info/?l=oss-security&m=127014999113790&w=2

secunia.com/advisories/39149

secunia.com/advisories/48817

security.gentoo.org/glsa/glsa-201204-06.xml

exchange.xforce.ibmcloud.com/vulnerabilities/57543

launchpad.net/bugs/532852

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON

Related for CVE-2010-0750

ubuntucve1 prion1 nvd1 debiancve1 cvelist1 gentoo1 openvas2 nessus1