CVE-2012-6655 – Ubuntu Security Notice USN-6687-1

https://notcve.org/view.php?id=CVE-2012-6655

27 Nov 2019 — An issue exists AccountService 0.6.37 in the user_change_password_authorized_cb() function in user.c which could let a local users obtain encrypted passwords. Existe un problema en AccountService versión 0.6.37, en la función user_change_password_authorized_cb() en el archivo user.c, lo que podría permitir a usuarios locales obtener contraseñas cifradas. It was discovered that AccountsService called a helper incorrectly when performing password change operations. A local attacker could possibly use this iss... • http://www.openwall.com/lists/oss-security/2014/08/16/7 • CWE-732: Incorrect Permission Assignment for Critical Resource •