- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-201204-06 (PolicyKit: Multiple vulnerabilities)
Multiple vulnerabilities have been found in PolicyKit:
Error messages in the pkexec utility disclose the existence of local files (CVE-2010-0750).
The pkexec utility initially checks the effective user ID of its parent process for authorization, instead of checking the real user ID (CVE-2011-1485).
Members of the 'wheel' group are able to execute commands as an administrator without a password (CVE-2011-4945).
Impact :
A local attacker could gain elevated privileges or sensitive information.
Workaround :
There is no known workaround at this time.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top