#VU44756 Improper Authentication in NetworkManager - CVE-2011-2176

Cybersecurity Help s.r.o.

Published: 2011-09-03 | Updated: 2020-08-11

Vulnerability identifier: #VU44756

Vulnerability risk: Low

CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2011-2176

CWE-ID: CWE-287

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
NetworkManager
Server applications / Remote management servers, RDP, SSH

Vendor: Gnome Development Team

Description

The vulnerability allows a remote non-authenticated attacker to manipulate data.

GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vectors.

Mitigation
Install update from vendor's website.

Vulnerable software versions

NetworkManager: 0.2.0 - 0.8.2

External links
https://cgit.freedesktop.org/NetworkManager/NetworkManager/plain/NEWS?h=NM_0_8
https://lists.fedoraproject.org/pipermail/package-announce/2011-August/063665.html
https://secunia.com/advisories/44858
https://securitytracker.com/id?1025711
https://www.mandriva.com/security/advisories?name=MDVSA-2011:171
https://www.redhat.com/support/errata/RHSA-2011-0930.html
https://bugzilla.redhat.com/show_bug.cgi?id=709662

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Improper Authentication in NetworkManager