CVE-2012-2737

Exploit

EPSS 0.36%
Veröffentlicht 22.07.2012 17:55:02
Zuletzt bearbeitet 16.06.2026 23:42:00
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

The user_change_icon_file_authorized_cb function in /usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not properly check the UID when copying an icon file to the system cache directory, which allows local users to read arbitrary files via a race condition.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 17

NVD 24 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ray Stode ≫ Accountsservice Version <= 0.6.21

Ray Stode ≫ Accountsservice Version0.4

Ray Stode ≫ Accountsservice Version0.5

Ray Stode ≫ Accountsservice Version0.6

Ray Stode ≫ Accountsservice Version0.6.1

Ray Stode ≫ Accountsservice Version0.6.2

Ray Stode ≫ Accountsservice Version0.6.3

Ray Stode ≫ Accountsservice Version0.6.4

Ray Stode ≫ Accountsservice Version0.6.5

Ray Stode ≫ Accountsservice Version0.6.6

Ray Stode ≫ Accountsservice Version0.6.7

Ray Stode ≫ Accountsservice Version0.6.8

Ray Stode ≫ Accountsservice Version0.6.9

Ray Stode ≫ Accountsservice Version0.6.10

Ray Stode ≫ Accountsservice Version0.6.11

Ray Stode ≫ Accountsservice Version0.6.12

Ray Stode ≫ Accountsservice Version0.6.13

Ray Stode ≫ Accountsservice Version0.6.14

Ray Stode ≫ Accountsservice Version0.6.15

Ray Stode ≫ Accountsservice Version0.6.16

Ray Stode ≫ Accountsservice Version0.6.17

Ray Stode ≫ Accountsservice Version0.6.18

Ray Stode ≫ Accountsservice Version0.6.19

Ray Stode ≫ Accountsservice Version0.6.20

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.36%	0.28

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:P/I:N/A:N

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

http://cgit.freedesktop.org/accountsservice/commit/?id=26213aa0e0d8dca5f36cc23f6942525224cbe9f5

Patch

Exploit

http://cgit.freedesktop.org/accountsservice/commit/?id=27f3d93a82fde4f6c7ab54f3f008af04f93f9c69

http://cgit.freedesktop.org/accountsservice/commit/?id=4c5b12e363410e490e776e4b4a86dcce157a543d

Patch

Exploit

http://cgit.freedesktop.org/accountsservice/commit/?id=bd51aa4cdac380f55d607f4ffdf2ab3c00d08721

Patch

Exploit

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083359.html

http://osvdb.org/83398

http://secunia.com/advisories/49695

Vendor Advisory

http://secunia.com/advisories/49759

Vendor Advisory

http://www.openwall.com/lists/oss-security/2012/06/28/9

http://www.securityfocus.com/bid/54223

http://www.ubuntu.com/usn/USN-1485-1

https://bugzilla.redhat.com/show_bug.cgi?id=832532

https://exchange.xforce.ibmcloud.com/vulnerabilities/76648

https://hermes.opensuse.org/messages/15100967

https://nvd.nist.gov/vuln/detail/CVE-2012-2737

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2737

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2737

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2012-2737