Vulnerability in Mandrakesoft Mandrake_linux
CVE-2006-0745
X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1)…
EPSS: 0.011 (61.3th percentile) — read the EPSS interpretation.
Affected products
- Mandrakesoft Mandrake_linux — versions 2006
- Sun Solaris — versions 10.0
- X.org X11r6 — versions 6.9
- X.org X11r7 — versions 1.0, 1.0.1
- Redhat Fedora_core — versions core_5.0
- Suse Suse_linux — versions 10.0
- N/a — versions n/a
References
- secalert@redhat.com (vendor-advisory, x_refsource_MANDRIVA)
- secalert@redhat.com (mailing-list, x_refsource_BUGTRAQ)
- secalert@redhat.com (vdb-entry, x_refsource_XF)
- secalert@redhat.com (x_refsource_FEDORA, vendor-advisory)
- secalert@redhat.com (x_refsource_CONFIRM)
- secalert@redhat.com (mailing-list, x_refsource_BUGTRAQ)
- secalert@redhat.com (vdb-entry, x_refsource_SECTRACK)
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_SUNALERT)
- secalert@redhat.com (x_refsource_OSVDB, vdb-entry)