CVE-2011-1709

HIGH

7.2

CVSS Severity Score

EPSS Score0.0050%

EPSS Percentile25.65th

PublishedJun 14, 2011

Last ModifiedApr 29, 2026

Vulnerability Description

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.

Affected Platforms (CPE)

📦

Gnome

Gdm

= 1.0

📦

Gnome

Gdm

= 2.0

📦

Gnome

Gdm

= 2.2

📦

Gnome

Gdm

= 2.3

📦

Gnome

Gdm

= 2.4

📦

Gnome

Gdm

= 2.5

📦

Gnome

Gdm

= 2.6

📦

Gnome

Gdm

= 2.8

📦

Gnome

Gdm

= 2.13

📦

Gnome

Gdm

= 2.14

📦

Gnome

Gdm

= 2.15

📦

Gnome

Gdm

= 2.16

📦

Gnome

Gdm

= 2.17

📦

Gnome

Gdm

= 2.18

📦

Gnome

Gdm

= 2.19

📦

Gnome

Gdm

= 2.20

📦

Gnome

Gdm

= 2.21

📦

Gnome

Gdm

= 2.22

📦

Gnome

Gdm

= 2.23

📦

Gnome

Gdm

= 2.24

📦

Gnome

Gdm

= 2.25

📦

Gnome

Gdm

= 2.26

📦

Gnome

Gdm

= 2.27

📦

Gnome

Gdm

= 2.28

📦

Gnome

Gdm

= 2.29

📦

Gnome

Gdm

= 2.30

📦

Gnome

Gdm

= 2.31

📦

Gnome

Gdm

= 2.32

📦

Gnome

Gdm

= 2.32.1

References & Advisories

🔗 http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.2.news

🔗 http://git.gnome.org/browse/gdm/commit/?id=d13dd72531599ab7e4c747db3b58a8c17753e08d

🔗 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061264.html

🔗 http://secunia.com/advisories/44797

🔗 http://secunia.com/advisories/44808

🔗 http://www.securityfocus.com/bid/48084

🔗 http://www.ubuntu.com/usn/USN-1142-1

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=709139

Vulnerability Description

Affected Platforms (CPE)

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

References & Advisories

Related Vulnerabilities