CVE-2012-6648

gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT from CVE-2012-0943 per ADT1/ADT2 due to different codebases and affected versions. CVE-2012-0943 is used for the guest-account issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 18%
VendorProductVersion
gdm-guest-session_projectgdm-guest-session
𝑥
≤ 0.24
gdm-guest-session_projectgdm-guest-session
0.20
gdm-guest-session_projectgdm-guest-session
0.21
gdm-guest-session_projectgdm-guest-session
0.22
gdm-guest-session_projectgdm-guest-session
0.23
canonicalubuntu_linux
10.04
canonicalubuntu_linux
10.10
canonicalubuntu_linux
11.04
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
gdm-guest-session
raring
dne
quantal
dne
precise
dne
oneiric
ignored
natty
Fixed 0.24ubuntu0.1
released
maverick
Fixed 0.17ubuntu0.1
released
lucid
Fixed 0.15ubuntu0.1
released
hardy
dne
lightdm
raring
Fixed 1.1.7-0ubuntu2
released
quantal
Fixed 1.1.7-0ubuntu2
released
precise
Fixed 1.1.7-0ubuntu2
released
oneiric
Fixed 1.0.6-0ubuntu1.6
released
natty
not-affected
maverick
dne
lucid
dne
hardy
dne
Common Weakness Enumeration
References
http://ubuntu.com/usn/usn-1399-1
https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/953044
https://launchpadlibrarian.net/96474113/gdm-guest-session.secure-cleanup.debdiff
http://ubuntu.com/usn/usn-1399-1
https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/953044
https://launchpadlibrarian.net/96474113/gdm-guest-session.secure-cleanup.debdiff