Vulnerabilities > David Paleino > Wicd > 1.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-04-07 | CVE-2012-2095 | Improper Input Validation vulnerability in multiple products The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus message. | 6.9 |
2012-06-29 | CVE-2012-0813 | Credentials Management vulnerability in David Paleino Wicd Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information. | 2.1 |