4 matches found
SUSE CVE-2002-1160
The default configuration of the pamxauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local users to gain root privileges by stealing the cookies from a temporary .xauth file, which is created with the original user's credentials after root uses su...
Fedora 21 : lxdm-0.4.1-10.fc21 (2015-7766c0d939)
It is found that lxdm does not close file descriptor for log file althouhg it should. Also session started via lxdm can allow any local user to connect X. This new rpm should fix these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedor...
Fedora Update for gdm FEDORA-2007-653
Check for the Version of gdm OpenVAS Vulnerability Test Fedora Update for gdm FEDORA-2007-653 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of th...
PT-2000-1199 · Openssh +1 · Openssh +1
Name of the Vulnerable Software and Affected Versions: OpenSSH affected versions not specified Description: The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious xauth program. Recommendations: At the moment, the...