Lucene search
UbuntuUSN-1107-1HistoryApr 06, 2011 - 12:00 a.m.
x11-xserver-utils vulnerability
2011-04-0600:00:00
ubuntu.com
31
9.7 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.022 Low
EPSS
Percentile
89.3%
Releases
- Ubuntu 10.10
- Ubuntu 10.04
- Ubuntu 9.10
- Ubuntu 8.04
Packages
- x11-xserver-utils - X server utilities
Details
Sebastian Krahmer discovered that the xrdb utility incorrectly filtered
crafted hostnames. An attacker could use this flaw with a malicious
DHCP server or with a remote xdmcp login and execute arbitrary code,
resulting in root privilege escalation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | x11-xserver-utils | < 7.4+2ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | x11-xserver-utils | < 7.3+2ubuntu0.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | x11-xserver-utils | < 7.5+2ubuntu1.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | x11-xserver-utils | < 7.5+1ubuntu2.1 | UNKNOWN |
References
Related
openvas
openvas
FreeBSD Ports: xrdb
2011-05-12 00:00:00
Ubuntu Update for x11-xserver-utils vulnerability USN-1107-1
2011-04-11 00:00:00
CentOS Update for xorg-x11-server-utils CESA-2011:0433 centos5 i386
2011-08-09 00:00:00
nessus
nessus
SuSE 11.1 Security Update : X11 (SAT Patch Number 4199)
2011-04-07 00:00:00
CentOS 4 : xorg-x11 (CESA-2011:0432)
2011-04-20 00:00:00
redhat
redhat
(RHSA-2011:0433) Moderate: xorg-x11-server-utils security update
2011-04-11 00:00:00
(RHSA-2011:0432) Moderate: xorg-x11 security update
2011-04-11 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: xorg-x11-server-utils-7.5-5.fc14
2011-04-14 20:57:38
[SECURITY] Fedora 15 Update: xorg-x11-server-utils-7.5-5.fc15
2011-04-15 21:10:42
[SECURITY] Fedora 13 Update: xorg-x11-server-utils-7.4-17.fc13
2011-06-11 04:27:26
centos
centos
xorg security update
2011-04-19 13:15:11
xorg security update
2011-04-14 15:07:49
oraclelinux
oraclelinux
xorg-x11-server-utils security update
2011-04-12 00:00:00
xorg-x11 security update
2011-04-11 00:00:00
prion
prion
Design/Logic Flaw
2011-04-08 15:17:00
securityvulns
securityvulns
[USN-1107-1] x11-xserver-utils vulnerability
2011-04-11 00:00:00
XRDB shell characters vulnerability
2011-04-11 00:00:00
slackware
slackware
[slackware-security] xrdb
2011-04-11 21:56:44
suse
suse
remote code execution in xorg-x11
2011-04-13 13:39:33
ubuntucve
ubuntucve
CVE-2011-0465
2011-04-06 00:00:00
debian
debian
[SECURITY] [DSA 2213-1] x11-xserver-utils security update
2011-04-08 19:52:50
cve
cve
CVE-2011-0465
2011-04-08 15:17:00
CVE-2011-1014
2017-07-21 19:29:00
debiancve
debiancve
CVE-2011-0465
2011-04-08 15:17:00
freebsd
freebsd
xrdb -- root hole via rogue hostname
2011-04-05 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2011
2014-12-11 00:00:00
9.7 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.022 Low
EPSS
Percentile
89.3%
Related for USN-1107-1