Vigil@nce: NetworkManager, two vulnerabilities
December 2009 by Vigil@nce
Two vulnerabilities of NetworkManager can be used by an attacker
to obtain information.
– Severity: 1/4
– Consequences: data reading
– Provenance: user shell
– Means of attack: no proof of concept, no attack
– Ability of attacker: expert (4/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Number of vulnerabilities in this bulletin: 2
– Creation date: 17/12/2009
IMPACTED PRODUCTS
– Unix - plateform
DESCRIPTION OF THE VULNERABILITY
The NetworkManager program is used to transparently configure a
network. It is impacted by two vulnerabilities.
If the user configures a certificate to access to a 802.1x/WPA
network, and then removes or delete the file containing the
certificate, NetworkManager does not detect that the file does not
exists, and directly connects to the network. [grav:1/4; 546795,
560067, CVE-2009-4144]
When the user modifies the configuration with
nm-connection-editor, it is published on D-Bus. A local attacker
can therefore read access passwords, for example. [grav:1/4;
546117, CVE-2009-4145]
CHARACTERISTICS
– Identifiers: 546117, 546795, 560067, CVE-2009-4144, CVE-2009-4145,
VIGILANCE-VUL-9298
– Url: http://vigilance.fr/vulnerability/NetworkManager-two-vulnerabilities-9298