SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   XScreenSaver Vendors:   Zawinski, Jamie
XScreenSaver Symlink Bug Lets Local Users View Arbitrary Files
SecurityTracker Alert ID:  1022512
SecurityTracker URL:  http://securitytracker.com/id/1022512
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Updated:  Jul 20 2009
Original Entry Date:  Jul 6 2009
Impact:   Disclosure of system information, Disclosure of user information
Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): 5.01
Description:   A vulnerability was reported in XScreenSaver. A local user can view portions of arbitrary files on the target system.

A local user can create a symbolic link (symlink) from a critical file on the system to the '~/.xscreensaver' file and then invoke xscreensaver to view portions of the symlinked file.

The original advisory is available at:

http://isowarez.de/xscreensaver.txt

Nikolaos Rangos reported this vulnerability.

[Editor's note: The original author of the report has indicated that only version 5.01 on Solaris is affected. Sun has issued an advisory for xscreensaver that appears to apply to this issue, but did not confirm whether the advisory applies.]

Impact:   A local user can view portions of arbitrary files on the target system.
Solution:   No solution was available at the time of this entry.

Sun is working on a fix.

The Sun advisory is available at:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-264048-1

Vendor URL:  www.jwz.org/xscreensaver/ (Links to External Site)
Cause:   Access control error
Underlying OS:  UNIX (Solaris - SunOS)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC