CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
15.5%
gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT from CVE-2012-0943 per ADT1/ADT2 due to different codebases and affected versions. CVE-2012-0943 is used for the guest-account issue.
Vendor | Product | Version | CPE |
---|---|---|---|
gdm-guest-session_project | gdm-guest-session | * | cpe:2.3:a:gdm-guest-session_project:gdm-guest-session:*:*:*:*:*:*:*:* |
gdm-guest-session_project | gdm-guest-session | 0.20 | cpe:2.3:a:gdm-guest-session_project:gdm-guest-session:0.20:*:*:*:*:*:*:* |
gdm-guest-session_project | gdm-guest-session | 0.21 | cpe:2.3:a:gdm-guest-session_project:gdm-guest-session:0.21:*:*:*:*:*:*:* |
gdm-guest-session_project | gdm-guest-session | 0.22 | cpe:2.3:a:gdm-guest-session_project:gdm-guest-session:0.22:*:*:*:*:*:*:* |
gdm-guest-session_project | gdm-guest-session | 0.23 | cpe:2.3:a:gdm-guest-session_project:gdm-guest-session:0.23:*:*:*:*:*:*:* |
canonical | ubuntu_linux | 10.04 | cpe:2.3:o:canonical:ubuntu_linux:10.04:-:lts:*:*:*:*:* |
canonical | ubuntu_linux | 10.10 | cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:* |
canonical | ubuntu_linux | 11.04 | cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:* |