1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
Candidate: CVE-2009-0365
PublicDate: 2009-03-04
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0365
http://www.ubuntu.com/usn/usn-728-1
http://www.ubuntu.com/usn/usn-727-1
http://www.ubuntu.com/usn/usn-727-2
Description:
nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an
incorrect deny setting, which allows local users to discover (1) network
connection passwords and (2) pre-shared keys via calls to the GetSecrets
method in the dbus request handler.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
Patches_network-manager-applet:
upstream_network-manager-applet: needs-triage
dapper_network-manager-applet: DNE
gutsy_network-manager-applet: released (0.6.5-0ubuntu11~7.10.1)
hardy_network-manager-applet: released (0.6.6-0ubuntu3.1)
intrepid_network-manager-applet: released (0.7~~svn20081020t000444-0ubuntu1.8.10.2)
devel_network-manager-applet: not-affected
Patches_network-manager:
upstream_network-manager: needs-triage
dapper_network-manager: released (0.6.2-0ubuntu7.1)
gutsy_network-manager: not-affected
hardy_network-manager: not-affected
intrepid_network-manager: released (0.7~~svn20081018t105859-0ubuntu1.8.10.2)
devel_network-manager: not-affected
|