Upstream information
Description
GNOME GDM 2.8, 2.12, 2.14, and 2.15, when the "face browser" feature is enabled, allows local users to access the "Configure Login Manager" functionality using their own password instead of the root password, which can be leveraged to gain additional privileges.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 3.7 |
| Vector | AV:L/AC:H/Au:N/C:P/I:P/A:P |
| Access Vector | Local |
| Access Complexity | High |
| Authentication | None |
| Confidentiality Impact | Partial |
| Integrity Impact | Partial |
| Availability Impact | Partial |
SUSE Security Advisories:
- SUSE-SR:2006:013, published Fri, 09 Jun 2006 17:00:00 +0000
SUSE Timeline for this CVE
CVE page created: Fri Jun 28 02:49:53 2013CVE page last modified: Fri Dec 8 16:16:21 2023