Vulnerability Name:

CVE-2009-1573 (CCN-50348)

Assigned:2009-05-02
Published:2009-05-02
Updated:2017-08-17
Summary:xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
4.4 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:H/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
2.0 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:H/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-264
Vulnerability Consequences:Obtain Information
References:Source: CCN
Type: Debian Bug report logs - #526678
Passes magic cookie insecurity

Source: CONFIRM
Type: Exploit, Vendor Advisory
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678

Source: MITRE
Type: CNA
CVE-2009-1573

Source: SECUNIA
Type: UNKNOWN
39834

Source: MLIST
Type: UNKNOWN
[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)

Source: MLIST
Type: UNKNOWN
[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)

Source: CCN
Type: OSVDB ID: 54680
xvfb-run Command Line Process Listing MCOOKIE Disclosure Local Privilege Escalation

Source: BID
Type: UNKNOWN
34828

Source: CCN
Type: BID-34828
xvfb-run Insecure Magic Cookie Local Information Disclosure Vulnerability

Source: CCN
Type: USN-939-1
X.org vulnerabilities

Source: UBUNTU
Type: UNKNOWN
USN-939-1

Source: VUPEN
Type: UNKNOWN
ADV-2010-1185

Source: CCN
Type: XFree86 Web site
XFree86 Home to the X Window System

Source: XF
Type: UNKNOWN
xvfbrun-magiccookie-info-disclosure(50348)

Source: XF
Type: UNKNOWN
xvfbrun-magiccookie-info-disclosure(50348)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:debian:debian_linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:fedora:10:*:*:*:*:*:*:*
  • OR cpe:/o:ubuntu:linux:*:*:*:*:*:*:*:*
  • AND
  • cpe:/a:branden_robinson:xvfb-run:1.6.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:12600
    P
    		USN-939-1 -- xorg-server vulnerabilities
    2014-06-30
    BACK
    debian debian linux *
    redhat fedora 10
    ubuntu linux *
    branden_robinson xvfb-run 1.6.1