The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun sunos - |
||
sun sunos 5.7 |
||
sun solaris 8.0 |
||
sun solaris 9.0 |
||
sun solaris 2.6 |
||
sun solaris 7.0 |
||
sun sunos 5.8 |