FreeBSD : xorg-server -- privilege escalation (61534682-b8f4-11da-8e62-000e0c33c2dc)

high Nessus Plugin ID 21441

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Daniel Stone of X.Org reports :

During the analysis of results from the Coverity code review of X.Org, we discovered a flaw in the server that allows local users to execute arbitrary code with root privileges, or cause a denial of service by overwriting files on the system, again with root privileges.

Solution

Update the affected package.

See Also

https://bugs.freedesktop.org/show_bug.cgi?id=6213

http://www.nessus.org/u?5e558524

Plugin Details

Severity: High

ID: 21441

File Name: freebsd_pkg_61534682b8f411da8e62000e0c33c2dc.nasl

Version: 1.12

Type: local

Published: 5/13/2006

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:xorg-server, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 3/21/2006

Vulnerability Publication Date: 3/20/2006

Reference Information

CVE: CVE-2006-0745