CVE-2012-6648

EUVD-2012-6494
gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT from CVE-2012-0943 per ADT1/ADT2 due to different codebases and affected versions. CVE-2012-0943 is used for the guest-account issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 18%
Affected Products (NVD)
VendorProductVersion
gdm-guest-session_projectgdm-guest-session
𝑥
≤ 0.24
gdm-guest-session_projectgdm-guest-session
0.20
gdm-guest-session_projectgdm-guest-session
0.21
gdm-guest-session_projectgdm-guest-session
0.22
gdm-guest-session_projectgdm-guest-session
0.23
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
canonicalubuntu_linux
11.04
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gdm-guest-session
hardy
dne
lucid
Fixed 0.15ubuntu0.1
released
maverick
Fixed 0.17ubuntu0.1
released
natty
Fixed 0.24ubuntu0.1
released
oneiric
ignored
precise
dne
quantal
dne
raring
dne
lightdm
hardy
dne
lucid
dne
maverick
dne
natty
not-affected
oneiric
Fixed 1.0.6-0ubuntu1.6
released
precise
Fixed 1.1.7-0ubuntu2
released
quantal
Fixed 1.1.7-0ubuntu2
released
raring
Fixed 1.1.7-0ubuntu2
released
Common Weakness Enumeration
References
http://ubuntu.com/usn/usn-1399-1
https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/953044
https://launchpadlibrarian.net/96474113/gdm-guest-session.secure-cleanup.debdiff
http://ubuntu.com/usn/usn-1399-1
https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/953044
https://launchpadlibrarian.net/96474113/gdm-guest-session.secure-cleanup.debdiff