Download
| Alert*
oval:org.secpod.oval:def:700284
Sebastian Krahmer discovered that the xrdb utility incorrectly filtered crafted hostnames. An attacker could use this flaw with a malicious DHCP server or with a remote xdmcp login and execute arbitrary code, resulting in root privilege escalation. oval:org.secpod.oval:def:500272 X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was found in the X.Org X server resource database utility, xrdb. Certain variables were not properly sanitized during the ... oval:org.secpod.oval:def:201621 The xorg-x11-server-utils package contains a collection of utilities used to modify and query the runtime configuration of the X.Org server. X.Org is an open source implementation of the X Window System. A flaw was found in the X.Org X server resource database utility, xrdb. Certain variables were n ... oval:org.secpod.oval:def:500084 The xorg-x11-server-utils package contains a collection of utilities used to modify and query the runtime configuration of the X.Org server. X.Org is an open source implementation of the X Window System. A flaw was found in the X.Org X server resource database utility, xrdb. Certain variables were n ... oval:org.secpod.oval:def:301004 A vulnerability has been found and corrected in xrdb: xrdb.c in xrdb before 1.0.9 in X.Org X11R7.6 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP or XDMCP message . Packages for 2009.0 are provided as of the Extended Ma ... oval:org.secpod.oval:def:400019 The xrdb helper program of the xorg-x11 package passes untrusted input such as hostnames retrieved via DHCP or client hostnames of XDMCP sessions to popen without sanitization. Therefore, remote attackers could execute arbitrary commands as root by assigning specially crafted hostnames to X11 server ... oval:org.secpod.oval:def:1503189 An updated xorg-x11-server-utils package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System base score, which gives a detailed severit ... oval:org.secpod.oval:def:201599 The xorg-x11-server-utils package contains a collection of utilities used to modify and query the runtime configuration of the X.Org server. X.Org is an open source implementation of the X Window System. A flaw was found in the X.Org X server resource database utility, xrdb. Certain variables were n ... oval:org.secpod.oval:def:600232 Sebastian Krahmer discovered that the xrdb utility of x11-xserver-utils, a X server resource database utility, is not properly filtering crafted hostnames. This allows a remote attacker to execute arbitrary code with root privileges given that either remote logins via xdmcp are allowed or the attack ... oval:org.secpod.oval:def:1000003 The remote host is missing a patch 147228-01 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:102705 A collection of utilities used to tweak and query the runtime configuration of the X server. oval:org.secpod.oval:def:102989 A collection of utilities used to tweak and query the runtime configuration of the X server. oval:org.secpod.oval:def:1000712 The remote host is missing a patch 148309-10 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:202853 X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. A flaw was found in the X.Org X server resource database utility, xrdb. Certain variables were not properly sanitized during the ... oval:org.secpod.oval:def:1000179 The remote host is missing a patch 147227-01 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:102557 A collection of utilities used to tweak and query the runtime configuration of the X server. oval:org.secpod.oval:def:1000725 The remote host is missing a patch 148310-10 containing a security fix. For more information please visit the reference link. |