The Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060317, and Solaris 8 through 10 prior to 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /tmp/xses-$USER file.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
x.org xdm |
||
netbsd netbsd 1.1 |
||
netbsd netbsd 1.2 |
||
netbsd netbsd 1.4.1 |
||
netbsd netbsd 1.4.2 |
||
netbsd netbsd 1.5.1 |
||
netbsd netbsd 1.5.2 |
||
netbsd netbsd 2.0 |
||
netbsd netbsd 2.0.1 |
||
sun solaris 10.0 |
||
sun sunos 5.8 |
||
sun solaris 9.0 |
||
netbsd netbsd 1.3.1 |
||
netbsd netbsd 1.3.2 |
||
netbsd netbsd 1.2.1 |
||
netbsd netbsd 1.3 |
||
netbsd netbsd 1.4.3 |
||
netbsd netbsd 1.4 |
||
netbsd netbsd 1.5.3 |
||
netbsd netbsd 1.5 |
||
netbsd netbsd 2.0.2 |
||
netbsd netbsd 2.0.3 |
||
sun solaris 8.0 |
||
netbsd netbsd |
||
netbsd netbsd 1.6 |
||
netbsd netbsd 1.6.1 |
||
netbsd netbsd 2.1 |
||
netbsd netbsd 3.0 |
||
netbsd netbsd 1.0 |
||
netbsd netbsd 1.3.3 |
||
netbsd netbsd 1.6.2 |
||
netbsd netbsd 3.99.15 |
||
netbsd netbsd 4.0 |
||
sun sunos 5.9 |
Vulmon