CyberSec.Space Logo
Back to CVE Browser

CVE-2012-1166

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1280%
EPSS Percentile10.38th
PublishedMay 21, 2014
Last ModifiedMay 6, 2026

Vulnerability Description

The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.

Affected Platforms (CPE)

πŸ“¦
Canonical

Ltsp Display Manager

= 2.2.4
πŸ“¦
Canonical

Ltsp Display Manager

= 2.2.5
πŸ“¦
Canonical

Ltsp Display Manager

= 2.2.6
πŸ’»
Canonical

Ubuntu Linux

= 11.04
πŸ’»
Canonical

Ubuntu Linux

= 11.10

References & Advisories

πŸ”— http://irclogs.ltsp.org/?d=2012-03-12
πŸ”— http://www.ubuntu.com/usn/USN-1398-1
πŸ”— https://bugs.launchpad.net/ubuntu/%2Bsource/ldm/%2Bbug/953340
πŸ”— http://irclogs.ltsp.org/?d=2012-03-12
πŸ”— http://www.ubuntu.com/usn/USN-1398-1
πŸ”— https://bugs.launchpad.net/ubuntu/%2Bsource/ldm/%2Bbug/953340

Related Vulnerabilities

CVE-2012-280110.0

Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unkn...

CVE-2012-280210.0

Unspecified vulnerability in the ac3_decode_frame function in libavcodec/ac3dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8...

CVE-2012-280010.0

Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg before 0.11, and Libav 0....

CVE-2012-280310.0

Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0...