CVE-2009-0489
First published: Mon Feb 09 2009(Updated: )
The DBus configuration file for Wicd before 1.5.9 allows arbitrary users to own org.wicd.daemon, which allows local users to receive messages that were intended for the Wicd daemon, possibly including credentials.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| David Paleino Wicd | =1.4.0 | |
| David Paleino Wicd | =1.2.7 | |
| David Paleino Wicd | =1.5.7 | |
| David Paleino Wicd | =1.5.3 | |
| David Paleino Wicd | =1.4.2 | |
| David Paleino Wicd | =1.5.2 | |
| David Paleino Wicd | =1.5.4 | |
| David Paleino Wicd | =1.3.1 | |
| David Paleino Wicd | <=1.5.8 | |
| David Paleino Wicd | =1.5.5 | |
| David Paleino Wicd | =1.4.1 | |
| David Paleino Wicd | =1.5.0 | |
| David Paleino Wicd | =1.5.1 | |
| David Paleino Wicd | =1.5.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sourceforge.net/project/shownotes.php?group_id=194573&release_id=659059
- http://bazaar.launchpad.net/~wicd-devel/wicd/trunk/revision/222
- http://www.openwall.com/lists/oss-security/2009/02/06/4
- http://secunia.com/advisories/33870
- http://security.gentoo.org/glsa/glsa-200904-12.xml
- http://secunia.com/advisories/34685
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/david paleino
- canonical/david paleino wicd
- version/david paleino wicd/1.4.0
- version/david paleino wicd/1.2.7
- version/david paleino wicd/1.5.7
- version/david paleino wicd/1.5.3
- version/david paleino wicd/1.4.2
- version/david paleino wicd/1.5.2
- version/david paleino wicd/1.5.4
- version/david paleino wicd/1.3.1
- version/david paleino wicd/1.5.8
- version/david paleino wicd/1.5.5
- version/david paleino wicd/1.4.1
- version/david paleino wicd/1.5.0
- version/david paleino wicd/1.5.1
- version/david paleino wicd/1.5.6