Lucene search
Ubuntu.comUB:CVE-2006-4447HistoryAug 30, 2006 - 12:00 a.m.
CVE-2006-4447
2006-08-3000:00:00
ubuntu.com
ubuntu.com
12
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
37.0%
X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans,
and xterm, does not check the return values for setuid and seteuid calls
when attempting to drop privileges, which might allow local users to gain
privileges by causing those calls to fail, such as by exceeding a ulimit.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 7.04 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 7.10 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 8.04 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 8.10 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 9.04 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 9.10 | noarch | beast | < 0.6.6-8 | UNKNOWN |
| ubuntu | 6.06 | noarch | xorg-server | < 1.0.2-0ubuntu10.7 | UNKNOWN |
| ubuntu | 6.10 | noarch | xorg-server | < 1.1.1-0ubuntu12.2 | UNKNOWN |
| ubuntu | 7.04 | noarch | xorg-server | < 1.2.0-3ubuntu8 | UNKNOWN |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200608-25 (xorg-x11,xorg-server,xtrans,xload,xinit,xterm,xf86dga,xdm,libX11)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200608-25 (xorg-x11, xorg-server, xtrans, xload, xinit, xterm, xf86dga, xdm, libX11)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200704-22 (BEAST)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2006-4447
2006-08-30 01:00:00
cert
cert
X.Org fails to check for setuid failure on Linux systems
2006-10-25 00:00:00
nvd
nvd
CVE-2006-4447
2006-08-30 01:04:00
gentoo
gentoo
X.org and some X.org libraries: Local privilege escalations
2006-08-28 00:00:00
BEAST: Denial of service
2007-04-27 00:00:00
debiancve
debiancve
CVE-2006-4447
2006-08-30 01:04:00
nessus
nessus
GLSA-200608-25 : X.org and some X.org libraries: Local privilege escalations
2006-08-30 00:00:00
Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2006:160)
2006-12-16 00:00:00
GLSA-200704-22 : BEAST: Denial of Service
2007-04-30 00:00:00
redhatcve
redhatcve
CVE-2006-4447
2015-10-30 09:22:41
cve
cve
CVE-2006-4447
2006-08-30 01:04:00
securityvulns
securityvulns
[ GLSA 200704-22 ] BEAST: Denial of Service
2007-04-29 00:00:00
osv
osv
xfree86
2006-10-09 00:00:00
debian
debian
[SECURITY] [DSA 1193-1] New XFree86 packages fix several vulnerabilities
2006-10-09 16:58:41
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
37.0%
Related for UB:CVE-2006-4447