cbcvebase.
CVE-2011-4105
published 2012-02-17

CVE-2011-4105: LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on ~/.Xauthority.

PriorityP47low1.9CVSS 2.0
AVLACMAuNCNIPAN
EPSS
0.31%
23.0th percentile
LightDM before 1.0.6 allows local users to change ownership of arbitrary files via a symlink attack on ~/.Xauthority.

Affected

44 ranges· showing 25
VendorProductVersion rangeFixed in
debianlightdm< lightdm 1.0.6-2 (bookworm)lightdm 1.0.6-2 (bookworm)
lightdm_projectlightdm>= 0 < 1.0.6-21.0.6-2
lightdm_projectlightdm>= 0 < 1.0.6-21.0.6-2
lightdm_projectlightdm>= 0 < 1.0.6-21.0.6-2
lightdm_projectlightdm>= 0 < 1.0.6-21.0.6-2
robert_ancelllightdm<= 1.0.5
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm
robert_ancelllightdm

CVSS provenance

nvdv2.01.9LOWAV:L/AC:M/Au:N/C:N/I:P/A:N
osv1.9LOW
vendor_debian1.9LOW
vendor_ubuntu1.9LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.