Lucene search
Ubuntu.comUB:CVE-2013-4331HistorySep 12, 2013 - 12:00 a.m.
CVE-2013-4331
2013-09-1200:00:00
ubuntu.com
ubuntu.com
6
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Light Display Manager (aka LightDM) 1.4.x before 1.4.3, 1.6.x before 1.6.2,
and 1.7.x before 1.7.14 uses 0664 permissions for the temporary .Xauthority
file, which allows local users to obtain sensitive information by reading
the file.
Bugs
- <https://bugs.launchpad.net/ubuntu/+source/lightdm/+bug/1175023>
- <https://bugs.launchpad.net/lightdm/+bug/685212>
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721744>
Notes
| Author | Note |
|---|---|
| mdeslaur | couldn’t reproduce on quantal |
Related
openvas
openvas
Fedora Update for lightdm FEDORA-2013-16381
2013-10-03 00:00:00
Fedora Update for lightdm FEDORA-2013-16388
2013-09-18 00:00:00
Ubuntu: Security Advisory (USN-1950-1)
2013-09-18 00:00:00
debiancve
debiancve
CVE-2013-4331
2014-02-02 00:55:04
ubuntu
ubuntu
Light Display Manager vulnerability
2013-09-12 00:00:00
securityvulns
securityvulns
lightdm weak permissions
2013-10-03 00:00:00
[USN-1950-1] Light Display Manager vulnerability
2013-10-03 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: lightdm-1.4.3-1.fc18
2013-09-26 06:17:05
[SECURITY] Fedora 19 Update: lightdm-1.6.2-1.fc19
2013-09-16 00:31:10
mageia
mageia
Updated lightdm package fixes security vulnerability
2013-09-19 13:46:09
nessus
nessus
Ubuntu 13.04 : lightdm vulnerability (USN-1950-1)
2013-09-13 00:00:00
prion
prion
Design/Logic Flaw
2014-02-02 00:55:00
nvd
nvd
CVE-2013-4331
2014-02-02 00:55:04
cvelist
cvelist
CVE-2013-4331
2014-02-02 00:00:00
cve
cve
CVE-2013-4331
2014-02-02 00:55:04
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Related for UB:CVE-2013-4331