CVE-2011-1709

HIGH

7.2

CVSS Severity Score

EPSS Score0.0050%

EPSS Percentile25.65th

Published2011年6月14日

Last Modified2026年4月29日

Vulnerability Description

GNOME Display Manager (gdm) before 2.32.2, when glib 2.28 is used, enables execution of a web browser with the uid of the gdm account, which allows local users to gain privileges via vectors involving the x-scheme-handler/http MIME type.

Affected Platforms (CPE)

📦

Gnome

Gdm

= 1.0

📦

Gnome

Gdm

= 2.0

📦

Gnome

Gdm

= 2.2

📦

Gnome

Gdm

= 2.3

📦

Gnome

Gdm

= 2.4

📦

Gnome

Gdm

= 2.5

📦

Gnome

Gdm

= 2.6

📦

Gnome

Gdm

= 2.8

📦

Gnome

Gdm

= 2.13

📦

Gnome

Gdm

= 2.14

📦

Gnome

Gdm

= 2.15

📦

Gnome

Gdm

= 2.16

📦

Gnome

Gdm

= 2.17

📦

Gnome

Gdm

= 2.18

📦

Gnome

Gdm

= 2.19

📦

Gnome

Gdm

= 2.20

📦

Gnome

Gdm

= 2.21

📦

Gnome

Gdm

= 2.22

📦

Gnome

Gdm

= 2.23

📦

Gnome

Gdm

= 2.24

📦

Gnome

Gdm

= 2.25

📦

Gnome

Gdm

= 2.26

📦

Gnome

Gdm

= 2.27

📦

Gnome

Gdm

= 2.28

📦

Gnome

Gdm

= 2.29

📦

Gnome

Gdm

= 2.30

📦

Gnome

Gdm

= 2.31

📦

Gnome

Gdm

= 2.32

📦

Gnome

Gdm

= 2.32.1

References & Advisories

🔗 http://ftp.gnome.org/pub/GNOME/sources/gdm/2.32/gdm-2.32.2.news

🔗 http://git.gnome.org/browse/gdm/commit/?id=d13dd72531599ab7e4c747db3b58a8c17753e08d

🔗 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061264.html

🔗 http://secunia.com/advisories/44797

🔗 http://secunia.com/advisories/44808

🔗 http://www.securityfocus.com/bid/48084

🔗 http://www.ubuntu.com/usn/USN-1142-1

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=709139

Vulnerability Description

Affected Platforms (CPE)

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

Gdm

References & Advisories

相关漏洞威胁