|Category:||FreeBSD Local Security Checks|
|Title:||FreeBSD Ports: slim|
|Summary:||FreeBSD Ports: slim|
The remote host is missing an update to the system
as announced in the referenced advisory.
The following package is affected: slim
SLiM Simple Login Manager 1.3.0 places the X authority magic cookie
(mcookie) on the command line when invoking xauth from (1) app.cpp and
(2) switchuser.cpp, which allows local users to access the X session
by listing the process and its arguments.
Update your system with the appropriate patches or
BugTraq ID: 35015|
Common Vulnerability Exposure (CVE) ID: CVE-2009-1756
XForce ISS Database: slim-xauthority-info-disclosure(50611)
|Copyright||Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com|
|This is only one of 58880 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.