QwikSec

Security Database

CVE

CWE

Training

CVE-2006-6730

Published: Dec 26, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

OpenBSD and NetBSD permit usermode code to kill the display server and write to the X.Org /dev/xf86 device, which allows local users with root privileges to reduce securelevel by replacing the System Management Mode (SMM) handler via a write to an SMRAM address within /dev/xf86 (aka the video card memory-mapped I/O range), and then launching the new handler via a System Management Interrupt (SMI), as demonstrated by a write to Programmed I/O port 0xB2.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20061215 Re: The (in)security of Xorg and DRI

mailing-list

x_refsource_BUGTRAQ

[Xorg] 20040613 DRI merging

mailing-list

x_refsource_MLIST

20061218 Re: The (in)security of Xorg and DRI

mailing-list

x_refsource_BUGTRAQ

http://www.ssi.gouv.fr/fr/sciences/fichiers/lti/cansecwest2006-duflot-paper.pdf

x_refsource_MISC

http://www.cansecwest.com/slides06/csw06-duflot.ppt

x_refsource_MISC

20061214 The (in)security of Xorg and DRI

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.