CVE-2012-1166 : The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7

The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.

Published 2014-05-21 14:55:06

Updated 2014-05-31 04:09:23

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2012-1166

Canonical » Ubuntu Linux » Version: 11.04
cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 11.10
cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
Matching versions
Canonical » Ltsp Display Manager » Version: 2.2.6
cpe:2.3:a:canonical:ltsp_display_manager:2.2.6:*:*:*:*:*:*:*
Matching versions
Canonical » Ltsp Display Manager » Version: 2.2.5
cpe:2.3:a:canonical:ltsp_display_manager:2.2.5:*:*:*:*:*:*:*
Matching versions
Canonical » Ltsp Display Manager » Version: 2.2.4
cpe:2.3:a:canonical:ltsp_display_manager:2.2.4:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2012-1166

Top countries where our scanners detected CVE-2012-1166

Top open port discovered on systems with this issue 80

IPs affected by CVE-2012-1166 9

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-1166!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-1166

EPSS FAQ

4.37%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 88 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-1166

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2012-1166

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-1166

http://www.ubuntu.com/usn/USN-1398-1

USN-1398-1: LTSP Display Manager vulnerability | Ubuntu security notices
http://irclogs.ltsp.org/?d=2012-03-12

Linux Terminal Server Project -
https://bugs.launchpad.net/ubuntu/%2Bsource/ldm/%2Bbug/953340

Bug #953340 “ldm 2.2.x (using wwm) contains a keybinding allowin...” : Bugs : ldm package : Ubuntu