Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2013-1065

backend.py in Jockey before 0.9.7-0ubuntu7.11 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.3%
CVSS Severity
CVSS v2 Score 4.6
Products affected by CVE-2013-1065
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.1
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.1
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.10
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.10
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.2
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.2
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.3
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.3
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.4
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.4
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.5
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.5
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.6
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.6
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.7
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.7
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.8
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.8
  • Martin Pitt » Jockey » Version: 0.9.7-0ubuntu7.9
    cpe:2.3:a:martin_pitt:jockey:0.9.7-0ubuntu7.9
  • Canonical » Ubuntu Linux » Version: 12.04
    cpe:2.3:o:canonical:ubuntu_linux:12.04


Products
Pricing
Contact Us

Shodan ® - All rights reserved