Vulnerabilities > CVE-2006-4655 - Local Buffer Overflow vulnerability in X.Org X Window Server LibX11 XKEYBOARD Extension

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
sco
sun
exploit available

Summary

Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.

Vulnerable Configurations

Part Description Count
OS
Sco
1
OS
Sun
6

Exploit-Db

  • descriptionX11R6. CVE-2006-4655. Local exploit for solaris platform
    idEDB-ID:2360
    last seen2016-01-31
    modified2006-09-13
    published2006-09-13
    reporterMarco Ivaldi
    sourcehttps://www.exploit-db.com/download/2360/
    titleX11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit solaris/sparc
  • descriptionX11R6. CVE-2006-4655. Local exploit for solaris platform
    idEDB-ID:2331
    last seen2016-01-31
    modified2006-09-08
    published2006-09-08
    reporterRISE Security
    sourcehttps://www.exploit-db.com/download/2331/
    titleX11R6 <= 6.4 XKEYBOARD - Local Buffer Overflow Exploit solaris/x86

Oval

accepted2007-09-27T08:57:41.950-04:00
classvulnerability
contributors
namePai Peng
organizationOpsware, Inc.
definition_extensions
  • commentSolaris 8 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1539
  • commentSolaris 9 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1457
  • commentSolaris 10 (SPARC) is installed
    ovaloval:org.mitre.oval:def:1440
  • commentSolaris 8 (x86) is installed
    ovaloval:org.mitre.oval:def:2059
  • commentSolaris 9 (x86) is installed
    ovaloval:org.mitre.oval:def:1683
  • commentSolaris 10 (x86) is installed
    ovaloval:org.mitre.oval:def:1926
descriptionBuffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
familyunix
idoval:org.mitre.oval:def:1798
statusaccepted
submitted2007-08-10T12:25:24.000-04:00
titleBuffer Overflow Vulnerability in libX11
version36