CVE-2006-4447

X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.

Published: Aug 30, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-4447
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
x.org / x11r6	6.8.1	6.8.1.x
x.org / x11r7	1.0.2	1.0.2.x
x.org / xinit	1.0.2_r5	1.0.2_r5.x
x.org / x11r7	1.0	1.0.x
x.org / xload	1.0.0	1.0.0.x
x.org / xterm	214	214.x
x.org / x11r6	6.7.0	6.7.0.x
x.org / x11r7	1.0.1	1.0.1.x
x.org / x11r6	6.8.2	6.8.2.x
x.org / xdm	1.0.3	1.0.3.x
x.org / x11r6	6.8	6.8.x
x.org / emu-linux-x87-xlibs	7.0_r1	7.0_r1.x
x.org / xf86dga	1.0.0	1.0.0.x
x.org / xorg-server	1.02_r5	1.02_r5.x

http://lists.freedesktop.org/archives/xorg/2006-June/016146.html
http://mail.gnome.org/archives/beast/2006-December/msg00025.html
http://secunia.com/advisories/21650
http://secunia.com/advisories/21660
http://secunia.com/advisories/21693
http://secunia.com/advisories/22332
http://secunia.com/advisories/25032
http://secunia.com/advisories/25059
http://security.gentoo.org/glsa/glsa-200608-25.xml
http://security.gentoo.org/glsa/glsa-200704-22.xml
http://www.debian.org/security/2006/dsa-1193
http://www.kb.cert.org/vuls/id/300368
http://www.mandriva.com/security/advisories?name=MDKSA-2006:160
http://www.securityfocus.com/bid/19742
http://www.securityfocus.com/bid/23697
http://www.vupen.com/english/advisories/2006/3409
http://www.vupen.com/english/advisories/2007/0409

Vulnerability Database

289,599

CVE-2006-4447