Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
1.9
CVSSv2

CVE-2017-2624

Published: 27/07/2018 Updated: 09/10/2019
CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4
CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1
VMScore: 169
Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N
Subscribe to X.org

Vulnerability Summary

It was found that xorg-x11-server prior to 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

x.org xorg-server

debian debian linux 7.0

Vendor Advisories

Debian CVElist Bug Report Logs: xorg-server: CVE-2017-2624: Timing attack against MIT Cookie
Debian Bug report logs - #856398 xorg-server: CVE-2017-2624: Timing attack against MIT Cookie Package: src:xorg-server; Maintainer for src:xorg-server is Debian X Strike Force <debian-x@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 28 Feb 2017 15:51:02 UTC Severity: important Tag ...
Ubuntu Security Notice: xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial vulnerabilities
Several security issues were fixed in the XOrg X server ...
Red Hat: CVE-2017-2624
It was found that xorg-x11-server before 1190 including uses memcmp() to check the received MIT cookie against a series of valid cookies If the cookie is correct, it is allowed to attach to the Xorg session Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, w ...

Exploits

Exploit DB: X.org Privilege Escalation / Use-After-Free / Weak Entropy
Xorg suffers from privilege escalation, weak entropy, and use-after-free vulnerabilities ...

References

CWE-200https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2624https://security.gentoo.org/glsa/201710-30https://security.gentoo.org/glsa/201704-03https://lists.debian.org/debian-lts-announce/2017/11/msg00032.htmlhttp://www.securitytracker.com/id/1037919http://www.securityfocus.com/bid/96480https://gitlab.freedesktop.org/xorg/xserver/commit/d7ac755f0b618eb1259d93c8a16ec6e39a18627chttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398https://usn.ubuntu.com/3362-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook