CVE-2012-1166

Publication date 12 March 2012

Last updated 24 July 2024


Ubuntu priority

The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.

Read the notes from the security team

Status

Package Ubuntu Release Status
ldm 11.10 oneiric
Fixed 2:2.2.4-0ubuntu1.1
11.04 natty
Fixed 2:2.2.1-0ubuntu1.1
10.10 maverick
Not affected
10.04 LTS lucid
Not affected
8.04 LTS hardy Ignored end of life

Notes


mdeslaur

2.2.x and up

References

Related Ubuntu Security Notices (USN)

    • USN-1398-1
    • LTSP Display Manager vulnerability
    • 12 March 2012

Other references