|
|
Info |
Last Modified |
| 6 months ago |
|
|
|
|
Description |
XFree86 xfs, the font server for the X Windowing system, contains a flaw that may allow a malicious user to overwrite the permissions of any file on the local system. The issue is triggered when root (or an appropriately privileged user) runs the xfs server after the attacker (a local user) creates a symlink from /tmp/.font-unix to any other file (such as /etc/shadow). It is possible that the flaw may allow information disclosure, privilege elevation or denial of service.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Race Condition
Impact:
Loss of Confidentiality,
Loss of Integrity,
Loss of Availability
Exploit:
Exploit Available
Disclosure:
OSVDB Verified
|
|
Solution |
Upgrade to version 3.3.3.2 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workarounds:
1) Do not run xfs as root or other priviliged user.
2) rm -rf /tmp/.font-unix before running xfs as a privileged user.
3) Apply the patch provided by Matthieu Herrb (see referenced security mail list post).
|
|
Products |
|
X11R6
 |
3.3.3.1 |
|
|
|
|
Credit |
- Lukasz Trabinski - lukasz
 lt.wsisiz.edu.pl -
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
