CVE-2006-5215

The Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060317, and Solaris 8 through 10 before 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /tmp/xses-$USER file.

Published: Oct 10, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-5215
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.6
AV:L/AC:H/Au:N/C:P/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
x.org / xdm	-	1.0.3.x
netbsd / netbsd	1.5.3	1.5.3.x
netbsd / netbsd	1.4	1.4.x
netbsd / netbsd	1.6	1.6.x
netbsd / netbsd	3.99.15	3.99.15.x
netbsd / netbsd	1.3	1.3.x
netbsd / netbsd	1.5	1.5.x
netbsd / netbsd	4.0	4.0.x
netbsd / netbsd	1.4.2	1.4.2.x
netbsd / netbsd	2.1	2.1.x
netbsd / netbsd	1.2.1	1.2.1.x
netbsd / netbsd	1.3.1	1.3.1.x
sun / solaris	8.0	8.0.x
netbsd / netbsd	1.4.1	1.4.1.x
netbsd / netbsd	2.0.2	2.0.2.x
netbsd / netbsd	1.6.1	1.6.1.x
netbsd / netbsd	2.0.3	2.0.3.x
netbsd / netbsd	1.6.2	1.6.2.x
sun / sunos	5.8	5.8.x
netbsd / netbsd	1.3.3	1.3.3.x
netbsd / netbsd	1.0	1.0.x
sun / solaris	9.0	9.0.x
netbsd / netbsd	-	current.x
sun / solaris	10.0	10.0.x
netbsd / netbsd	1.6-beta	1.6-beta.x
netbsd / netbsd	1.5.1	1.5.1.x
sun / sunos	5.9	5.9.x
netbsd / netbsd	1.1	1.1.x
netbsd / netbsd	1.5.2	1.5.2.x
netbsd / netbsd	1.4.3	1.4.3.x
netbsd / netbsd	2.0.1	2.0.1.x
netbsd / netbsd	3.0	3.0.x
netbsd / netbsd	1.3.2	1.3.2.x
sun / solaris	8.0-beta	8.0-beta.x
netbsd / netbsd	2.0	2.0.x
sun / solaris	9.0-x86_update_2	9.0-x86_update_2.x
netbsd / netbsd	1.2	1.2.x

Vulnerability Database

289,697

CVE-2006-5215