CVE-2009-0365
EPSS 0.12%network-manager network-manager-applet - information disclosure
發布日:2009/3/5修改日:2026/4/28
也稱為:DEBIAN-CVE-2009-0365
描述
nm-applet.conf in GNOME NetworkManager before 0.7.0.99 contains an incorrect deny setting, which allows local users to discover (1) network connection passwords and (2) pre-shared keys via calls to the GetSecrets method in the dbus request handler.
受影響套件(4)
- Debian/network-managerfrom 0, < 0.6.5-1
- Debian/network-managerfrom 0, < 0.6.4-6+etch1
- Debian/network-manager-appletfrom 0, < 0.7.0.99-1
- Debian/network-manager-appletfrom 0, < 0.6.6-4+lenny1