CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:S/C:C/I:N/A:N
EPSS
Percentile
10.1%
nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an
incorrect deny setting, which allows local users to discover (1) network
connection passwords and (2) pre-shared keys via calls to the GetSecrets
method in the dbus request handler.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | network-manager | <Β 0.6.2-0ubuntu7.1 | UNKNOWN |
ubuntu | 8.10 | noarch | network-manager | <Β 0.7~~svn20081018t105859-0ubuntu1.8.10.2 | UNKNOWN |
ubuntu | 7.10 | noarch | network-manager-applet | <Β 0.6.5-0ubuntu11~7.10.1 | UNKNOWN |
ubuntu | 8.04 | noarch | network-manager-applet | <Β 0.6.6-0ubuntu3.1 | UNKNOWN |
ubuntu | 8.10 | noarch | network-manager-applet | <Β 0.7~~svn20081020t000444-0ubuntu1.8.10.2 | UNKNOWN |