xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-05-06T17:00:00

Updated: 2024-08-07T05:20:34.939Z

Reserved: 2009-05-06T00:00:00

Link: CVE-2009-1573

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2009-05-06T17:30:09.797

Modified: 2024-11-21T01:02:48.470

Link: CVE-2009-1573

cve-icon Redhat

Severity : Low

Publid Date: 2009-05-02T00:00:00Z

Links: CVE-2009-1573 - Bugzilla