Security Advisory

CVE-2006-5214

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-10-09 21:00:00

Last updated 2024-08-07 19:41:04

Assigner mitre

State PUBLISHED

Description

Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a users Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession errors files of other users.

← Browse all CVEs View on cve.org ↗