CVE-2016-3100

CVE-2016-3100

kinit in KDE Frameworks before 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.

Source: CVE-2016-3100

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다