CVE-2009-0365

nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an incorrect deny setting, which allows local users to discover (1) network connection passwords and (2) pre-shared keys via calls to the GetSecrets method in the dbus request handler.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:ubuntu:ubuntu_linux:6.06:-:lts:*:*:*:*:*
cpe:2.3:o:ubuntu:ubuntu_linux:7.10:*:*:*:*:*:*:*
cpe:2.3:o:ubuntu:ubuntu_linux:8.04:-:lts:*:*:*:*:*
cpe:2.3:o:ubuntu:ubuntu_linux:8.10:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-03-05 02:30

Updated : 2024-02-28 11:21


NVD link : CVE-2009-0365

Mitre link : CVE-2009-0365

CVE.ORG link : CVE-2009-0365


JSON object : View

Products Affected

ubuntu

  • ubuntu_linux
CWE
CWE-264

Permissions, Privileges, and Access Controls