Summary
The remote host is missing an update to gdm
announced via advisory DSA 1040-1.
A vulnerability has been identified in gdm, a display manager for X, that could allow a local attacker to gain elevated privileges by exploiting a race condition in the handling of the .ICEauthority file.
The old stable distribution (woody) is not affected by this problem.
Solution
For the stable distribution (sarge) this problem has been fixed in version 2.6.0.8-1sarge2.
For the unstable distribution (sid) this problem will be fixed in version 2.14.1-1.
We recommend that you upgrade your gdm package.
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201040-1
Severity
Classification
-
CVE CVE-2006-1057 -
CVSS Base Score: 3.7
AV:L/AC:H/Au:N/C:P/I:P/A:P
Related Vulnerabilities