Main Vulnerability Database Exploits ID:3876 - Exploit for Improper Certificate Validation in Debian Linux - CVE-2012-1096

ID:3876 - Exploit for Improper Certificate Validation in Debian Linux - CVE-2012-1096

Published: August 9, 2020

Vulnerability identifier: #VU34795

Vulnerability risk: Low

CVE-ID: CVE-2012-1096

CWE-ID: CWE-295

Exploitation vector: Local access

Vulnerable software:
Debian Linux

Link to public exploit:

https://www.exploit-db.com/exploits/36887/

Vulnerability description

The vulnerability allows a local authenticated user to gain access to sensitive information.

NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.

Remediation

Install update from vendor's website.

ID:3876 - Exploit for Improper Certificate Validation in Debian Linux - CVE-2012-1096

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human