CVE-2006-5215

Description

The Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060317, and Solaris 8 through 10 before 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /tmp/xses-$USER file.

Affected products

NetBSD / netbsd1.4 – 1.4
NetBSD / netbsdcurrent
NetBSD / netbsd1.0 – 1.0
NetBSD / netbsd1.1 – 1.1
NetBSD / netbsd1.2 – 1.2
NetBSD / netbsd1.2.1 – 1.2.1
NetBSD / netbsd1.3 – 1.3
NetBSD / netbsd1.3.1 – 1.3.1
NetBSD / netbsd1.3.2 – 1.3.2
NetBSD / netbsd1.3.3 – 1.3.3
NetBSD / netbsd1.4 – 1.4
NetBSD / netbsd1.4 – 1.4
NetBSD / netbsd1.6.1 – 1.6.1
NetBSD / netbsd1.6.2 – 1.6.2
NetBSD / netbsd2.0 – 2.0
NetBSD / netbsd2.0.1 – 2.0.1
NetBSD / netbsd2.0.2 – 2.0.2
NetBSD / netbsd2.0.3 – 2.0.3
NetBSD / netbsd2.1 – 2.1
NetBSD / netbsd3.0 – 3.0
NetBSD / netbsd3.99.15 – 3.99.15
NetBSD / netbsd4.0 – 4.0
NetBSD / netbsd1.4 – 1.4
NetBSD / netbsd1.4 – 1.4
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.1 – 1.4.1
NetBSD / netbsd1.4.2 – 1.4.2
NetBSD / netbsd1.4.2 – 1.4.2
NetBSD / netbsd1.4.2 – 1.4.2
NetBSD / netbsd1.4.2 – 1.4.2
NetBSD / netbsd1.4.2 – 1.4.2
NetBSD / netbsd1.4.3 – 1.4.3
NetBSD / netbsd1.5 – 1.5
NetBSD / netbsd1.5 – 1.5
NetBSD / netbsd1.5 – 1.5
NetBSD / netbsd1.5.1 – 1.5.1
NetBSD / netbsd1.5.2 – 1.5.2
NetBSD / netbsd1.5.3 – 1.5.3
NetBSD / netbsd1.6 – 1.6
NetBSD / netbsd1.6 – 1.6
sun / solaris8.0 – 8.0
sun / solaris8.0 – 8.0
sun / solaris9.0 – 9.0
sun / solaris10.0 – 10.0
sun / solaris9.0 – 9.0
sun / solaris9.0 – 9.0
sun / solaris8.0 – 8.0
sun / sunos5.9 – 5.9
sun / sunos5.8 – 5.8
X.Org / xdm1.0.3

Description

Affected products

References