Lucene search
Gentoo FoundationGLSA-201405-26HistoryMay 19, 2014 - 12:00 a.m.
X2Go Server: Privilege Escalation
2014-05-1900:00:00
Gentoo Foundation
security.gentoo.org
15
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
70.8%
Background
X2Go is an open source terminal server project.
Description
X2Go Server is prone to a local privilege-escalation vulnerability.
Impact
A local attacker could gain escalated privileges.
Workaround
There is no known workaround at this time.
Resolution
All X2Go Server users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-misc/x2goserver-4.0.1.12"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | net-misc/x2goserver | < 4.0.1.12 | UNKNOWN |
Related
cvelist
cvelist
CVE-2013-7383
2014-05-20 14:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201405-26
2015-09-29 00:00:00
prion
prion
Design/Logic Flaw
2014-05-20 14:55:00
debiancve
debiancve
CVE-2013-7383
2014-05-20 14:55:04
nessus
nessus
GLSA-201405-26 : X2Go Server: Privilege Escalation
2014-05-20 00:00:00
nvd
nvd
CVE-2013-7383
2014-05-20 14:55:04
cve
cve
CVE-2013-7383
2014-05-20 14:55:04
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.003 Low
EPSS
Percentile
70.8%
Related for GLSA-201405-26