NULL Pointer Dereference Vulnerability in LightDM GTK+ Greeter
CVE-2014-0979 · LOW Severity
AV:L/AC:L/AU:N/C:N/I:N/A:P
The start_authentication function in lightdm-gtk-greeter.c in LightDM GTK+ Greeter before 1.7.1 does not properly handle the return value from the lightdm_greeter_get_authentication_user function, which allows local users to cause a denial of service (NULL pointer dereference) via an empty username.
Learn more about our User Device Pen Test.