CVE-2006-1057 - OpenCVE

Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:H/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Gnome	Gdm

Configuration 1 [-]

cpe:2.3:a:gnome:gdm:2.14:*:*:*:*:*:*:*

References

Link	Resource
http://cvs.gnome.org/viewcvs/gdm2/daemon/slave.c?r1=1.260&r2=1.261
http://www.debian.org/security/2006/dsa-1040	Patch Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:083
http://www.redhat.com/support/errata/RHSA-2007-0286.html
http://www.securityfocus.com/bid/17635
http://www.vupen.com/english/advisories/2006/1465	Vendor Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188303
https://exchange.xforce.ibmcloud.com/vulnerabilities/26092
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10092
https://usn.ubuntu.com/278-1/
https://www.redhat.com/archives/fedora-announce-list/2006-April/msg00160.html	Patch

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2006-04-25T01:00:00

Updated: 2018-10-03T20:57:01

Reserved: 2006-03-07T00:00:00

Link: CVE-2006-1057

JSON object: View

NVD Information

Status : Modified

Published: 2006-04-25T01:02:00.000

Modified: 2018-10-03T21:36:39.153

Link: CVE-2006-1057

JSON object: View

Redhat Information

No data.

CWE

CWE-362

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-04-24T00:00:00", "descriptions": [{"lang": "en", "value": "Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-03T20:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "gdm-slavec-symlink(26092)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26092"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188303"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://cvs.gnome.org/viewcvs/gdm2/daemon/slave.c?r1=1.260&r2=1.261"}, {"name": "ADV-2006-1465", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/1465"}, {"name": "MDKSA-2006:083", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:083"}, {"name": "DSA-1040", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2006/dsa-1040"}, {"name": "17635", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/17635"}, {"name": "RHSA-2007:0286", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2007-0286.html"}, {"name": "oval:org.mitre.oval:def:10092", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10092"}, {"name": "FEDORA-2006-338", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-announce-list/2006-April/msg00160.html"}, {"name": "USN-278-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/278-1/"}]}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2006-1057", "datePublished": "2006-04-25T01:00:00", "dateReserved": "2006-03-07T00:00:00", "dateUpdated": "2018-10-03T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:gnome:gdm:2.14:*:*:*:*:*:*:*", "matchCriteriaId": "70640B9F-4EAA-4513-80E4-9DD4A862F27D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Race condition in daemon/slave.c in gdm before 2.14.1 allows local users to gain privileges via a symlink attack when gdm performs chown and chgrp operations on the .ICEauthority file."}], "id": "CVE-2006-1057", "lastModified": "2018-10-03T21:36:39.153", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 1.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-04-25T01:02:00.000", "references": [{"source": "secalert@redhat.com", "url": "http://cvs.gnome.org/viewcvs/gdm2/daemon/slave.c?r1=1.260&r2=1.261"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2006/dsa-1040"}, {"source": "secalert@redhat.com", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:083"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2007-0286.html"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/17635"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/1465"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188303"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26092"}, {"source": "secalert@redhat.com", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10092"}, {"source": "secalert@redhat.com", "url": "https://usn.ubuntu.com/278-1/"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://www.redhat.com/archives/fedora-announce-list/2006-April/msg00160.html"}], "sourceIdentifier": "secalert@redhat.com", "vendorComments": [{"comment": "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188302\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 and 3.", "lastModified": "2006-09-19T00:00:00", "organization": "Red Hat"}], "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-362"}], "source": "nvd@nist.gov", "type": "Primary"}]}