ISS X-Force Database: xfree86-xaw(2096): X11 Xaw library local buffer overflows

X11 Xaw library local buffer overflows

xfree86-xaw (2096)

High Risk

Description:

Xaw is vulnerable to a buffer overflow caused by faulty processing of data related to specific X Windows resources. This buffer overflow could allow local users to gain unauthorized root privileges. This vulnerability can be exploited through a variety of applications linked to the Xaw library.

Platforms Affected:

SGI, IRIX 5.0
SGI, IRIX 5.0.1
SGI, IRIX 5.1
SGI, IRIX 5.1.1
SGI, IRIX 5.2
SGI, IRIX 5.3 XFS
SGI, IRIX 5.3
SGI, IRIX 6.0
SGI, IRIX 6.0.1
SGI, IRIX 6.1
SGI, IRIX 6.2
SGI, IRIX 6.3
SGI, IRIX 6.4
SGI, IRIX 6.5
X.Org, X11

Remedy:

This vulnerability has been observed in all releases of X11 from the Open Group from R6 to R6.4 and future versions will be corrected. This vulnerability also affects XFree86 up to and including version 3.3.2.

For XFree86:
Apply patch 1, as listed in Security Advisory XFree86-SA-1998:01. See References.

For SGI IRIX 5.3, 6.2, 6.3, and 6.4:
Apply the following patches from SGI, as listed in Silicon Graphics Inc. Security Advisory 19981003-01-PX. See References.

IRIX 5.3: patch 3162
IRIX 6.2: patch 3163
IRIX 6.3: patch 3164
IRIX 6.4: patch 3165

For SGI IRIX 6.5:
Upgrade to the latest version of IRIX (6.5.1 or later), as listed in Silicon Graphics Inc. Security Advisory 19981003-01-PX. See References.

Note: For IRIX versions other than 5.3, 6.2, 6.3, 6.4, 6.5, or 6.5.1, upgrade to one of the supported versions, then apply the above patches, as listed in Silicon Graphics Inc. Security Advisory 19981003-01-PX. See References.

For other distributions:
Contact your vendor for patch or upgrade information.

Consequences:

Gain Privileges

References:

CERT Vendor-Initiated Bulletin VB-98.04, Vulnerabilities in xterm and Xaw at http://ftp.cerias.purdue.edu/pub/advisories/cert/cert_bulletins/VB-98.04.xterm.Xaw.
CIAC Information Bulletin J-010, SGI Buffer Overflow Vulnerabilities (xterm(1), Xaw library) at http://ciac.llnl.gov/ciac/bulletins/j-010.shtml.
SGI Security Advisory 19981003-01-PX, Xaw library exploitable buffer overflow at ftp://patches.sgi.com/support/free/security/advisories/19981003-01-PX.
The XFree86 Project, Inc. Security Advisory XFree86-SA-1998:01, xterm and Xaw library vulnerability at ftp://ftp.xfree86.org/pub/XFree86/Security/XFree86-SA-1998:01.asc.
BID-334: IRIX -xrm Buffer Overflow Vulnerability
CVE-1999-0126: SGI IRIX buffer overflow in xterm and Xaw allows root access.

Reported:

Apr 27, 1998

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page