Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.2
CVSSv2

CVE-2007-3103

Published: 15/07/2007 Updated: 16/10/2018
CVSS v2 Base Score: 6.2 | Impact Score: 10 | Exploitability Score: 1.9
VMScore: 625
Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Subscribe to Fedora Core

Vulnerability Summary

The init.d script for the X.Org X11 xfs font server on various Linux distributions might allow local users to change the permissions of arbitrary files via a symlink attack on the /tmp/.font-unix temporary file.

Vulnerable Product Search on Vulmon Subscribe to Product

fedoraproject fedora core 6.0

redhat enterprise linux 4.0

redhat enterprise linux desktop 4.0

redhat linux

Vendor Advisories

Debian Security Advisories: DSA-1342-1 xfs -- race condition
It was discovered that a race condition in the initd script of the X Font Server allows the modification of file permissions of arbitrary files if the local administrator can be tricked into restarting the X font server For the oldstable distribution (sarge) xfs is present as part of the monolithic xfree86 package A fix will be provided along wi ...

Exploits

Exploit DB: X.Org xorg-x11-xfs 1.0.2-3.1 - Local Race Condition
#!/bin/sh # Xorg-x11-xfs Race Condition Vuln local root exploit (CVE-2007-3103) # # Another lame xploit by vl4dZ :)) works on redhat el5 and before # # $ id # uid=1001(kecos) gid=1001(user) groups=1001(user) # $ sh xfs-RaceCondition-root-exploitsh # [*] Generate large data file in /tmp/font-unix # [*] Wait for xfs service to be (re)starte ...
Exploit DB: xorg-race.txt
XOrg xorg-x11-xfs versions 102-31 and below local race condition exploit ...

References

CWE-59http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=557http://bugzilla.redhat.com/242903http://www.redhat.com/support/errata/RHSA-2007-0519.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0520.htmlhttps://issues.rpath.com/browse/RPL-1485http://bugs.gentoo.org/show_bug.cgi?id=185660http://www.debian.org/security/2007/dsa-1342http://security.gentoo.org/glsa/glsa-200710-11.xmlhttp://www.securityfocus.com/bid/24888http://www.securitytracker.com/id?1018375http://secunia.com/advisories/26081http://secunia.com/advisories/26282http://secunia.com/advisories/26056http://secunia.com/advisories/27240https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00096.htmlhttp://secunia.com/advisories/35674https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00095.htmlhttp://osvdb.org/40945https://exchange.xforce.ibmcloud.com/vulnerabilities/35375https://www.exploit-db.com/exploits/5167https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10802http://www.securityfocus.com/archive/1/473869/100/0/threadedhttps://nvd.nist.govhttps://www.debian.org/security/./dsa-1342https://www.exploit-db.com/exploits/5167/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook