CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
15.5%
Ryan Lortie discovered that a guest session script bundled in the Light
Display Manager package improperly cleaned out certain guest session files.
A local attacker could use this issue to delete arbitrary files.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 11.10 | noarch | lightdm | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | gir1.2-lightdm-1 | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | liblightdm-gobject-1-0 | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | liblightdm-gobject-1-dev | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | liblightdm-gobject-1-doc | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | liblightdm-qt-1-0 | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | liblightdm-qt-1-dev | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | lightdm-gtk-greeter | < 1.0.6-0ubuntu1.6 | UNKNOWN |
Ubuntu | 11.10 | noarch | lightdm-qt-greeter | < 1.0.6-0ubuntu1.6 | UNKNOWN |