Filtered by vendor Simone Rota
Subscriptions
Filtered by product Slim Simple Login Manager
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2010-2945 | 1 Simone Rota | 1 Slim Simple Login Manager | 2024-11-21 | N/A |
The default configuration of SLiM before 1.3.2 places ./ (dot slash) at the beginning of the default_path option, which might allow local users to gain privileges via a Trojan horse program in the current working directory, related to slim.conf and cfg.cpp. | ||||
CVE-2009-1756 | 1 Simone Rota | 1 Slim Simple Login Manager | 2024-11-21 | N/A |
SLiM Simple Login Manager 1.3.0 places the X authority magic cookie (mcookie) on the command line when invoking xauth from (1) app.cpp and (2) switchuser.cpp, which allows local users to access the X session by listing the process and its arguments. |
Page 1 of 1.