VULHUB ™

A vulnerability has been reported for X Server on multiple SCO based platforms. Reportedly, on execution the X Server will ignore the existing system umask and install files with world readable and writeable permissions. An attacker may exploit this vulnerability to deny service, disclose confidential data or obtain elevated privileges on the vulnerable system. This may be done by modifying or replacing the X Server files with arbitrary, attacker-supplied files, or symlinks to existing files.

A vulnerability has been reported for X Server on multiple SCO based platforms. Reportedly, on execution the X Server will ignore the existing system umask and install files with world readable and writeable permissions. An attacker may exploit this vulnerability to deny service, disclose confidential data or obtain elevated privileges on the vulnerable system. This may be done by modifying or replacing the X Server files with arbitrary, attacker-supplied files, or symlinks to existing files.