CVE-2009-0365

Related Files

Debian Linux Security Advisory 1955-1

Posted Dec 16, 2009

Authored by Debian | Site debian.org

Debian Linux Security Advisory 1955-1 - It was discovered that network-manager-applet, a network management framework, lacks some dbus restriction rules, which allows local users to obtain sensitive information.

tags | advisory, local

systems | linux, debian

advisories | CVE-2009-0365

SHA-256 | 87ea0c6a7d58756e5830eeb80d4300c38a14848bf22bc9762222fae74f966ade

Download | Favorite | View

Ubuntu Security Notice 727-2

Posted Mar 5, 2009

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-727-2 - USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and user network connection passwords and pre-shared keys.

tags | advisory, local, vulnerability

systems | linux, ubuntu

advisories | CVE-2009-0365

SHA-256 | 0c14cf48d8611cdb6818f947ec42cb794e1122daed485c23f64b7713c917bfb6

Download | Favorite | View

Ubuntu Security Notice 727-1

Posted Mar 5, 2009

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice USN-727-1 - It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view other users' network connection passwords and pre-shared keys. It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus modify and delete requests. A local user could use dbus to modify or delete other users' network connections. This issue only applied to Ubuntu 8.10.

tags | advisory, local

systems | linux, ubuntu

advisories | CVE-2009-0365, CVE-2009-0578

SHA-256 | 90c27bd6deee884cbb2c802dbc54476650334e988f468895e7c8c38df932d34d

Download | Favorite | View