David Paleino: >> Wicd >> 1.6.0 Security Vulnerabilities
The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus message.
CVSS Score
6.9
EPSS Score
0.006
Published
2014-04-07
Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information.
CVSS Score
2.1
EPSS Score
0.001
Published
2012-06-29