Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2013-0254

Published

11 years ago

Last Modified

2 years ago

CVSSv2.0 Severity

Low

Impact Analysis

The QSharedMemory class in Qt 5.0.0, 4.8.x before 4.8.5, 4.7.x before 4.7.6, and other versions including 4.4.0 uses weak permissions (world-readable and world-writable) for shared memory segments, which allows local users to read sensitive information or modify critical program data, as demonstrated by reading a pixmap being sent to an X server..

CVSSv2.0 Score

Severity: Low
Base Score: 3.6/10
Exploit Score: 3.9/10
Access Vector: Local
Access Complexity: Low
Authentication Required: None
Impact Score: 4.9/10
Confidentiality Impact: Partial
Availability Impact: None
Integrity Impact: Partial

Products Affected

CPE	Affected	Vulnerable	Excluding
cpe:2.3:a:qt:qt:1.41:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:1.44:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:1.45:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:1.42:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:1.43:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:2.0.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:2.0.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:2.0.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:3.3.6:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.0.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.1.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.0.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.2.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.2.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.2.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.3.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.4.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.4.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.4.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.4.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.5.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.5.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.5.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.5.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.6.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.7.6:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.2:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.3:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.0:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.4:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:4.8.5:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:5.0.1:::::::*	Yes	-	-
cpe:2.3:a:qt:qt:5.0.0:::::::*	Yes	-	-

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

CVE-2013-0254

CVE information

Published

Last Modified

CVSSv2.0 Severity

Impact Analysis

Share

Description

CVSSv2.0 Score

Products Affected

References