2.1

CVE-2010-0750

Exploit
pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users to determine the existence of arbitrary files via the argument.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FreedesktopPolicykit Version0.96
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.47% 0.369
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://bugs.freedesktop.org/show_bug.cgi?id=26982
Patch
Exploit
http://cgit.freedesktop.org/PolicyKit/commit/?id=14bdfd816512a82b1ad258fa143ae5faa945df8a
Patch
Exploit
http://marc.info/?l=oss-security&m=127014095301235&w=2
http://marc.info/?l=oss-security&m=127014999113790&w=2
http://secunia.com/advisories/39149
Vendor Advisory
http://secunia.com/advisories/48817
http://security.gentoo.org/glsa/glsa-201204-06.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/57543
https://launchpad.net/bugs/532852
Exploit