1.2 CVE-2006-5214
Patch
Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.
https://nvd.nist.gov/vuln/detail/CVE-2006-5214
Categories
CWE-NVD-Other
References
BID
CONFIRM Patch
http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm |
http://www.netbsd.org/cgi-bin/query-pr-single.pl?number=32804 Patch |
https://bugs.freedesktop.org/show_bug.cgi?id=5897 |
OVAL
SECTRACK
SECUNIA
SUNALERT Patch
102652 Patch |
UBUNTU
VUPEN
CPE
cpe | start | end |
---|---|---|
Configuration 1 | ||
cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:* | ||
cpe:2.3:o:netbsd:netbsd:3.99.15:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:* | ||
cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:* |
REMEDIATION
Patch
Url |
---|
http://www.netbsd.org/cgi-bin/query-pr-single.pl?number=32804 |
102652 |
EXPLOITS
Exploit-db.com
id | description | date | |
---|---|---|---|
No known exploits |
Other (github, ...)
Url |
---|
No known exploits |
CAPEC
Common Attack Pattern Enumerations and Classifications
id | description | severity |
---|---|---|
No entry |
MITRE
Sherlock® flash
Take a picture of your computer network in a few clicks !
The Sherlock® flash audit solution allows you to perform an audit to strengthen the security of your IT assets. Vulnerability analysis of your physical and virtual equipment. Patch planning by priority level and time available. Detailed and intuitive reporting.
