Description
dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary files via a symlink attack on ~/.dmrc.
References (3)
Core 3
Core References
Issue Tracking x_refsource_confirm
https://bugs.launchpad.net/ubuntu/%2Bsource/lightdm/%2Bbug/883865
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1262-1
Various Sources x_refsource_confirm
http://bazaar.launchpad.net/~lightdm-team/lightdm/trunk/revision/1299
Scores
EPSS
0.0031
EPSS Percentile
22.8%
Details
CWE
CWE-59
Status
published
Products (45)
canonical/ubuntu_linux
11.10
robert_ancell/lightdm
0.0.1
robert_ancell/lightdm
0.0.2
robert_ancell/lightdm
0.0.3
robert_ancell/lightdm
0.0.4
robert_ancell/lightdm
0.1.0
robert_ancell/lightdm
0.1.1
robert_ancell/lightdm
0.1.2
robert_ancell/lightdm
0.2.0
robert_ancell/lightdm
0.2.1
... and 35 more
Published
Mar 06, 2014
Tracked Since
Feb 18, 2026