Oval Definition:oval:org.mitre.oval:def:5393
Revision Date:2008-03-24Version:16
Title:Security Vulnerability in the Solaris X Server May Lead to Unauthorized Disclosure of Information on Access Restricted Files and Directories
Description:X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2007-5958
Platform(s):Sun Solaris 10
Sun Solaris 8
Sun Solaris 9
Product(s):
Definition Synopsis
  • Solaris 8 (SPARC) meets Sun Alert 230901
  • Solaris 8 (SPARC) is installed
  • AND NOT Patch 119067-09 or later installed
  • OR Solaris 9 (SPARC) meets Sun Alert 230901
  • Solaris 9 (SPARC) is installed
  • AND NOT Patch 112785-63 or later installed
  • OR
  • Solaris 10 (SPARC) is installed
  • File Xsun exists
  • AND NOT Patch 119059-38 or later installed
  • File Xorg exists
  • AND NOT Patch 125719-07 or later installed
  • OR Solaris 8 (x86) meets Sun Alert 230901
  • Solaris 8 (x86) is installed
  • AND NOT Patch 119068-09 or later installed
  • OR
  • Solaris 9 (x86) is installed
  • File Xsun exists
  • AND NOT Patch 112786-52 or later installed
  • File Xorg exists
  • AND NOT Patch 118908-04 or later installed
  • OR
  • Solaris 10 (x86) is installed
  • File Xsun exists
  • AND NOT Patch 119060-37 or later installed
  • File Xorg exists
  • AND NOT Patch 125720-17 or later installed
    • BACK