CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
15.5%
debian/guest-account in Light Display Manager (lightdm) 1.0.x before 1.0.6
and 1.1.x before 1.1.7, as used in Ubuntu Linux 11.10, allows local users
to delete arbitrary files via a space in the name of a file in /tmp. NOTE:
this identifier was SPLIT per ADT1/ADT2 due to different codebases and
affected versions. CVE-2012-6648 has been assigned for the
gdm-guest-session issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | gdm-guest-session | < 0.15ubuntu0.1 | UNKNOWN |
ubuntu | 10.10 | noarch | gdm-guest-session | < 0.17ubuntu0.1 | UNKNOWN |
ubuntu | 11.04 | noarch | gdm-guest-session | < 0.24ubuntu0.1 | UNKNOWN |
ubuntu | 11.10 | noarch | lightdm | < 1.0.6-0ubuntu1.6 | UNKNOWN |
ubuntu | 12.04 | noarch | lightdm | < 1.1.7-0ubuntu2 | UNKNOWN |
ubuntu | 12.10 | noarch | lightdm | < 1.1.7-0ubuntu2 | UNKNOWN |
ubuntu | 13.04 | noarch | lightdm | < 1.1.7-0ubuntu2 | UNKNOWN |