Lucene search

K
zdiJan-Niklas SohnZDI-20-1417
HistoryDec 09, 2020 - 12:00 a.m.

X.Org Server XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability

2020-12-0900:00:00
Jan-Niklas Sohn
www.zerodayinitiative.com
25
vulnerability
local attacker
privilege escalation
x.org server
validation
integer underflow
memory
code execution
root.

EPSS

0.001

Percentile

30.8%

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of XIChangeHierarchy requests. The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root.