SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   X Vendors:   X.org
X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
SecurityTracker Alert ID:  1025317
SecurityTracker URL:  http://securitytracker.com/id/1025317
CVE Reference:   CVE-2011-0465   (Links to External Site)
Date:  Apr 12 2011
Impact:   Execution of arbitrary code via network, Root access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): X11R7.6 (xrdb prior to 1.0.9)
Description:   A vulnerability was reported in X. A remote user can execute arbitrary commands on the target system.

A remote user can send specially crafted hostname values (containing shell escape characters) to the target system to execute arbitrary commands on the target system with root privileges when a display manager reads in the resource database via xrdb.

Systems that set their hostname via DHCP are affected (if the dhcp client permits hostnames with illegal characters).

Systems that allow remote logins via xdmcp are affected.

Sebastian Krahmer from the SUSE security team reported this vulnerability.

Impact:   A remote user can execute arbitrary commands with root privileges on the target system.
Solution:   The vendor has issued a fix (xrdb-1.0.9).

The vendor's advisory is available at:

http://lists.freedesktop.org/archives/xorg-announce/2011-April/001636.html

Vendor URL:  x.org/ (Links to External Site)
Cause:   Input validation error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Apr 12 2011 (Red Hat Issues Fix) X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
Red Hat has issued a fix for Red Hat Enterprise Linux 4.
Apr 12 2011 (Red Hat Issues Fix) X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
Red Hat has issued a fix for Red Hat Enterprise Linux 5 and 6.
Apr 17 2012 (Attachmate Issues Fix for Reflection) X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
Attachmate has issued a fix for Reflection.
Mar 13 2013 (Oracle Issues Fix for Solaris) X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
Oracle has issued a fix for Solaris 9 and 10.
Jul 3 2013 (Oracle Issues Fix for Solaris) X xrdb Input Validation Flaw in Processing Hostname Lets Remote Users Execute Arbitrary Commands
Oracle has issued a fix for Solaris 9 and 10.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC