← Back

CVE-2013-4459

nvd nist
Published: Nov 23, 2013Modified: Apr 29, 2026

JSON object

Loading...
3.3
Vector
AV:L/AC:M/Au:N/C:P/I:P/A:N
Exploitability: 3.4 / Impact: 4.9
Source: NVD

Description

LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the AppArmor profile to the Guest account, which allows local users to bypass intended restrictions by leveraging the Guest account.

Affected (21)

Robert Ancell
1 product
Lightdm
Canonical
1 product
Ubuntu Linux
Configuration A
20 vulnerable
Vulnerable SoftwareAffected Versions
Robert Ancell
Lightdm
Version 1.7.10
Lightdm
Version 1.7.11
Lightdm
Version 1.7.12
Lightdm
Version 1.7.13
Lightdm
Version 1.7.14
Lightdm
Version 1.7.15
Lightdm
Version 1.7.16
Lightdm
Version 1.7.17
Lightdm
Version 1.7.18
Lightdm
Version 1.7.5
Lightdm
Version 1.7.6
Lightdm
Version 1.7.7
Lightdm
Version 1.7.8
Lightdm
Version 1.7.9
Lightdm
Version 1.8.0
Lightdm
Version 1.8.1
Lightdm
Version 1.8.2
Lightdm
Version 1.8.3
Lightdm
Version 1.9.0
Lightdm
Version 1.9.1
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Ubuntu Linux
Version 13.10

Related CWEs

CWE-264
CWE-264

References (8)

Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit

Timeline

No history available yet.