CVE-2017-8900

Sažetak

LightDM through 1.22.0, when systemd is used in Ubuntu 16.10 and 17.x, allows physically proximate attackers to bypass intended AppArmor restrictions and visit the home directories of arbitrary users by establishing a guest session.

Reference

http://www.securityfocus.com/bid/98554
https://launchpad.net/bugs/1663157
https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-8900.html
https://www.ubuntu.com/usn/usn-3285-1/

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

03-10-2019 - 00:03

Objavljeno

12-05-2017 - 07:29