CVE-2011-1709
14.06.2011, 17:55
GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnome | gdm | 1.0 |
| gnome | gdm | 2.0 |
| gnome | gdm | 2.2 |
| gnome | gdm | 2.3 |
| gnome | gdm | 2.4 |
| gnome | gdm | 2.5 |
| gnome | gdm | 2.6 |
| gnome | gdm | 2.8 |
| gnome | gdm | 2.13 |
| gnome | gdm | 2.14 |
| gnome | gdm | 2.15 |
| gnome | gdm | 2.16 |
| gnome | gdm | 2.17 |
| gnome | gdm | 2.18 |
| gnome | gdm | 2.19 |
| gnome | gdm | 2.20 |
| gnome | gdm | 2.21 |
| gnome | gdm | 2.22 |
| gnome | gdm | 2.23 |
| gnome | gdm | 2.24 |
| gnome | gdm | 2.25 |
| gnome | gdm | 2.26 |
| gnome | gdm | 2.27 |
| gnome | gdm | 2.28 |
| gnome | gdm | 2.29 |
| gnome | gdm | 2.30 |
| gnome | gdm | 2.31 |
| gnome | gdm | 2.32 |
| gnome | gdm | 2.32.1 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gdm |
| ||||||||||||||||||||||
| gdm-devel |
| ||||||||||||||||||||||
| gdm-lang |
| ||||||||||||||||||||||
| gdmflexiserver |
| ||||||||||||||||||||||
| libgdm1 |
| ||||||||||||||||||||||
| typelib-1_0-Gdm-1_0 |
|
Common Weakness Enumeration
References