CVE-2009-1573

2009-05-06T13:30:09
ID CVE-2009-1573
Type cve
Reporter NVD
Modified 2017-08-16T21:30:24

Description

xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.