Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060225, and Solaris 8 through 10 prior to 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd 3.99.15 |
||
sun solaris 10.0 |
||
sun sunos 5.8 |
||
sun solaris 9.0 |
||
netbsd netbsd 3.0 |