Lucene search
+L

5 matches found

osv
osv
added 2016/07/13 3:59 p.m.10 views

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.4CVSS8.2AI score
Exploits0References8
osv
osv
added 2016/07/13 3:59 p.m.9 views

UBUNTU-CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions 644 for /tmp/xauth-xxx-y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file...

8.4CVSS7.2AI score0.00399EPSS
Exploits0References6
cve
cve
added 2016/07/13 3:0 p.m.52 views

CVE-2016-3100

KDE Frameworks components suffer from a local-privilege issue in kinit prior to v5.23.0: the directory /tmp/xauth-xxx-_y is created with weak permissions (644), enabling local users to read X11 cookies of other users and potentially capture keystrokes or escalate privileges. Remediation: upgrade ...

8.4CVSS8.1AI score0.00399EPSS
Exploits0References8Affected Software2
nessus
nessus
added 2016/07/05 12:0 a.m.23 views

openSUSE Security Update : kinit (openSUSE-2016-821)

kinit was updated to fix one security issue. This security issue was fixed : - CVE-2016-3100: World readable Xauthority file exposed cookie credentials boo983926. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSU...

8.4CVSS7.7AI score0.00399EPSS
Exploits0References2
osv
osv
added 2016/06/27 2:30 p.m.5 views

SUSE-SU-2016:2217-1 Security update for kinit

kinit was updated to fix one security issue. This security issue was fixed: - CVE-2016-3100: World readable Xauthority file exposed cookie credentials boo983926...

8.4CVSS8.3AI score0.00399EPSS
Exploits0References3
Rows per page
Query Builder