Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-3355

Опубликовано: 17 июл. 2012
Источник: nvd
CVSS2: 3.6
EPSS Низкий

Описание

(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnome:rhythmbox:*:*:*:*:*:*:*:*
Версия до 0.13.3 (включая)
cpe:2.3:a:gnome:rhythmbox:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.5.88:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.6.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.8.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.6.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.10.0.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.11.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.5:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.6:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.7:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.12.8:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:rhythmbox:0.13.2:*:*:*:*:*:*:*

EPSS

Процентиль: 26%
0.00093
Низкий

3.6 Low

CVSS2

Дефекты

CWE-94

Связанные уязвимости

ubuntu логотип

CVE-2012-3355

ubuntu
больше 13 лет назад

(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.

redhat логотип

CVE-2012-3355

redhat
почти 15 лет назад

(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.

debian логотип

CVE-2012-3355

debian
больше 13 лет назад

1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab. ...

github логотип

GHSA-3f36-xgxj-8g4q

github
больше 3 лет назад

(1) AlbumTab.py, (2) ArtistTab.py, (3) LinksTab.py, and (4) LyricsTab.py in the Context module in GNOME Rhythmbox 0.13.3 and earlier allows local users to execute arbitrary code via a symlink attack on a temporary HTML template file in the /tmp/context directory.

EPSS

Процентиль: 26%
0.00093
Низкий

3.6 Low

CVSS2

Дефекты

CWE-94