Vulnerabilities > Canonical > Ltsp Display Manager > Critical

DATE CVE VULNERABILITY TITLE RISK
2014-05-21 CVE-2012-1166 OS Command Injection vulnerability in Canonical Ltsp Display Manager and Ubuntu Linux
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.
network
low complexity
canonical CWE-78
critical
10.0