1.2 CVE-2006-5214
Patch
Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.
https://nvd.nist.gov/vuln/detail/CVE-2006-5214
Categories
CWE-NVD-Other
References
BID
CONFIRM Patch
| http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm |
| http://www.netbsd.org/cgi-bin/query-pr-single.pl?number=32804 Patch |
| https://bugs.freedesktop.org/show_bug.cgi?id=5897 |
OVAL
SECTRACK
SECUNIA
SUNALERT Patch
| 102652 Patch |
UBUNTU
VUPEN
CPE
| cpe | start | end |
|---|---|---|
| Configuration 1 | ||
| cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:netbsd:netbsd:3.99.15:*:*:*:*:*:*:* | ||
| cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:* | ||
| cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:* | ||
REMEDIATION
Patch
| Url |
|---|
| http://www.netbsd.org/cgi-bin/query-pr-single.pl?number=32804 |
| 102652 |
EXPLOITS
Exploit-db.com
| id | description | date | |
|---|---|---|---|
| No known exploits | |||
Other (github, ...)
| Url |
|---|
| No known exploits |
CAPEC
Common Attack Pattern Enumerations and Classifications
| id | description | severity |
|---|---|---|
| No entry | ||
MITRE
Sherlock® flash
Take a picture of your computer network in a few clicks !
The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.
