CVE-2012-2737

Exploit

EPSS 0.07%
Veröffentlicht 22.07.2012 17:55:02
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

The user_change_icon_file_authorized_cb function in /usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not properly check the UID when copying an icon file to the system cache directory, which allows local users to read arbitrary files via a race condition.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 17

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ray Stode ≫ Accountsservice Version <= 0.6.21

Ray Stode ≫ Accountsservice Version0.4

Ray Stode ≫ Accountsservice Version0.5

Ray Stode ≫ Accountsservice Version0.6

Ray Stode ≫ Accountsservice Version0.6.1

Ray Stode ≫ Accountsservice Version0.6.2

Ray Stode ≫ Accountsservice Version0.6.3

Ray Stode ≫ Accountsservice Version0.6.4

Ray Stode ≫ Accountsservice Version0.6.5

Ray Stode ≫ Accountsservice Version0.6.6

Ray Stode ≫ Accountsservice Version0.6.7

Ray Stode ≫ Accountsservice Version0.6.8

Ray Stode ≫ Accountsservice Version0.6.9

Ray Stode ≫ Accountsservice Version0.6.10

Ray Stode ≫ Accountsservice Version0.6.11

Ray Stode ≫ Accountsservice Version0.6.12

Ray Stode ≫ Accountsservice Version0.6.13

Ray Stode ≫ Accountsservice Version0.6.14

Ray Stode ≫ Accountsservice Version0.6.15

Ray Stode ≫ Accountsservice Version0.6.16

Ray Stode ≫ Accountsservice Version0.6.17

Ray Stode ≫ Accountsservice Version0.6.18

Ray Stode ≫ Accountsservice Version0.6.19

Ray Stode ≫ Accountsservice Version0.6.20

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.188

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.9	3.4	2.9	AV:L/AC:M/Au:N/C:P/I:N/A:N

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

http://cgit.freedesktop.org/accountsservice/commit/?id=26213aa0e0d8dca5f36cc23f6942525224cbe9f5

Patch

Exploit

http://cgit.freedesktop.org/accountsservice/commit/?id=27f3d93a82fde4f6c7ab54f3f008af04f93f9c69

http://cgit.freedesktop.org/accountsservice/commit/?id=4c5b12e363410e490e776e4b4a86dcce157a543d

Patch

Exploit

http://cgit.freedesktop.org/accountsservice/commit/?id=bd51aa4cdac380f55d607f4ffdf2ab3c00d08721

Patch

Exploit

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083359.html

http://osvdb.org/83398