CVE-2009-0578

GNOME NetworkManager before 0.7.0.99 does not properly verify privileges for dbus (1) modify and (2) delete requests, which allows local users to change or remove the network connections of arbitrary users via unspecified vectors related to org.freedesktop.NetworkManagerUserSettings and at_console.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:S/C:N/I:C/A:C
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
VendorProductVersion
ubuntuubuntu_linux
8.10
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
network-manager-applet
bullseye
1.20.0-3
fixed
lenny
not-affected
bookworm
1.30.0-2
fixed
sid
1.36.0-1
fixed
trixie
1.36.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
network-manager-applet
intrepid
Fixed 0.7~~svn20081020t000444-0ubuntu1.8.10.2
released
hardy
Fixed 0.6.6-0ubuntu3.1
released
gutsy
Fixed 0.6.5-0ubuntu11~7.10.1
released
dapper
dne
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://secunia.com/advisories/34067
http://secunia.com/advisories/34473
http://www.redhat.com/support/errata/RHSA-2009-0361.html
http://www.securityfocus.com/bid/33966
http://www.securitytracker.com/id?1021909
http://www.ubuntu.com/usn/USN-727-1
https://bugzilla.redhat.com/show_bug.cgi?id=487752
https://exchange.xforce.ibmcloud.com/vulnerabilities/49063
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8931
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://secunia.com/advisories/34067
http://secunia.com/advisories/34473
http://www.redhat.com/support/errata/RHSA-2009-0361.html
http://www.securityfocus.com/bid/33966
http://www.securitytracker.com/id?1021909
http://www.ubuntu.com/usn/USN-727-1
https://bugzilla.redhat.com/show_bug.cgi?id=487752
https://exchange.xforce.ibmcloud.com/vulnerabilities/49063
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8931