From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Aug 22 2003 - 05:10:42 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
GNOME Display Manager Multiple Vulnerabilities

READ ONLINE:
http://www.secunia.com/advisories/9571/

CRITICAL:
Less critical

IMPACT:
Exposure of sensitive information, DoS

WHERE:
From local network

SOFTWARE:
GNOME Display Manager (GDM) 2.x

DESCRIPTION:
Three vulnerabilities have been reported in GNOME Display Manager
(GDM), which can be exploited by malicious users to read arbitrary
files on the system or cause a Denial of Service (DoS).

The first vulnerability is caused due to an error in the "examine
session errors" feature. The problem is that GDM reads the
"~/.xsession-errors" file with "root" privileges, which can be
exploited to disclose the content of arbitrary files on the system
via a symlink attack.

Successful exploitation requires that the session lasts less than 10
seconds.

The two other vulnerabilities are caused due to errors in the X
Display Manager Control Protocol (XDMCP), which can be exploited by
malicious people to crash the gdm daemon.

SOLUTION:
The vulnerabilities have been fixed in version 2.4.2.100 and later.
http://ftp.gnome.org/pub/GNOME/sources/gdm/2.4/

ORIGINAL ADVISORY:
http://cvs.gnome.org/lxr/source/gdm2/NEWS#83

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +45 7020 5144
Fax : +45 7020 5145

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]