Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2006-0745

Published: 21/03/2006 Updated: 19/10/2018
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to X11r7

Vulnerability Summary

X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

x.org x11r7 1.0

x.org x11r7 1.0.1

x.org x11r6 6.9

mandrakesoft mandrake linux 2006

redhat fedora core core_5.0

sun solaris 10.0

suse suse linux 10.0

Vendor Advisories

Debian CVElist Bug Report Logs: xserver-xorg: local user DoS and arbitrary code execution as root [CVE-2006-0745]
Debian Bug report logs - #360388 xserver-xorg: local user DoS and arbitrary code execution as root [CVE-2006-0745] Package: xserver-xorg; Maintainer for xserver-xorg is Debian X Strike Force <debian-x@listsdebianorg>; Source for xserver-xorg is src:xorg (PTS, buildd, popcon) Reported by: Filipus Klutiero <cheal@hotpopc ...

Exploits

Exploit DB: X.Org X11 (X11R6.9.0/X11R7.0) - Local Privilege Escalation
# From Daniel Stone's Advisory # xorg-server 100, as shipped with X11R70, and all release candidates # of X11R70, is vulnerable # X11R690, and all release candidates, are vulnerable # X11R682 and earlier versions are not vulnerable # The rest is H D Moore from metasploit Two second exploit, but if anyone is lazy: $ wget metasp ...
Exploit DB: xorg-x11-server modulepath Local Privilege Escalation
xorg-x11-server versions prior to 1203 modulepath local privilege escalation exploit ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/17169http://secunia.com/advisories/19311http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.htmlhttp://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.htmlhttp://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1http://www.osvdb.org/24000http://www.osvdb.org/24001http://securitytracker.com/id?1015793http://secunia.com/advisories/19256http://secunia.com/advisories/19307http://secunia.com/advisories/19316http://support.avaya.com/elmodocs2/security/ASA-2006-078.htmhttp://secunia.com/advisories/19676http://www.mandriva.com/security/advisories?name=MDKSA-2006:056http://securityreason.com/securityalert/606http://www.vupen.com/english/advisories/2006/1028http://www.vupen.com/english/advisories/2006/1017https://exchange.xforce.ibmcloud.com/vulnerabilities/25341https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697http://www.securityfocus.com/archive/1/428230/100/0/threadedhttp://www.securityfocus.com/archive/1/428183/100/0/threadedhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=360388https://nvd.nist.govhttps://www.exploit-db.com/exploits/1596/https://www.kb.cert.org/vuls/id/837857
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook