Privilege Escalation Vulnerability in X.Org Server by The X.Org Foundation
CVE-2006-0745

Currently unrated

Key Information:

Vendor: X.org
Status: X11r7; X11r6
Vendor: CVE Published:; 21 March 2006

What is CVE-2006-0745?

The X.Org Server, specifically versions 1.0.0 and later, including X11R6.9.0 and X11R7.0, has a vulnerability where it improperly interprets the address of the geteuid function. This flaw allows local users to bypass security restrictions, enabling them to execute arbitrary code using the -modulepath command line option or overwrite arbitrary files via the -logfile option. The vulnerability poses a significant risk to system integrity, potentially allowing unauthorized access and manipulation of critical system files.

References

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://www.securityfocus.com/archive/1/428230/100/0/threaded

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/25341

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2006
Vulnerability Reserved
Feb 17, 2006

X.org

What is CVE-2006-0745?

References

Timeline