|
|
XFree86 4.1.0 Missing authDir Unauthorized xdm Connection Vulnerability
|
Bugtraq ID:
|
3965
|
|
Class:
|
Origin Validation Error
|
|
CVE:
|
CAN-2002-1510
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jan 19 2002 12:00AM
|
|
Updated:
|
Jan 19 2002 12:00AM
|
|
Credit:
|
Minimal information about this issue was disclosed on the XFree86 security page on January 19th, 2002. Credit for discovery was not given.
|
|
Vulnerable:
|
XFree86 X11R6 4.1 .0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
Debian Linux 3.0
+
RedHat Advanced Workstation for the Itanium Processor 2.1
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.1 i386
+
Turbolinux Turbolinux Server 7.0
+
Turbolinux Turbolinux Workstation 7.0
XFree86 X11R6 4.0.3
+
RedHat Linux 7.1
XFree86 X11R6 4.0.1
+
RedHat Linux 7.0
XFree86 X11R6 4.0
Sun Linux 5.0.6
|
|
|
|
Not Vulnerable:
|
XFree86 X11R6 4.2 .0
+
Conectiva Linux Enterprise Edition 1.0
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
+
Turbolinux Turbolinux Server 8.0
+
Turbolinux Turbolinux Workstation 8.0
|
|
|
