CVE-2006-6698

The GConf daemon (gconfd) in GConf 2.14.0 creates temporary files under directories with names based on the username, even when GCONF_GLOBAL_LOCKS is not set, which allows local users to cause a denial of service by creating the directories ahead of time, which prevents other users from using Gnome.

CVSS v2.0 1.9 LOW

1.9^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 3.4 / Impact : 2.9

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://bugzilla.gnome.org/show_bug.cgi?id=167030	Exploit
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=219279	Exploit
http://secunia.com/advisories/23452	Vendor Advisory
http://www.securityfocus.com/bid/21762
http://www.vupen.com/english/advisories/2006/5148

Configurations

Configuration 1 (hide)

cpe:2.3:a:gnome:gconf:2.14.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-12-22 18:28

Updated : 2011-03-08 02:46

NVD link : CVE-2006-6698

Mitre link : CVE-2006-6698

CVE.ORG link : CVE-2006-6698

JSON object : View

Products Affected

gnome

gconf

CWE

NVD-CWE-Other

{"id": "CVE-2006-6698", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 1.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-12-22T18:28:00.000", "references": [{"url": "http://bugzilla.gnome.org/show_bug.cgi?id=167030", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=219279", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/23452", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/21762", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/5148", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The GConf daemon (gconfd) in GConf 2.14.0 creates temporary files under directories with names based on the username, even when GCONF_GLOBAL_LOCKS is not set, which allows local users to cause a denial of service by creating the directories ahead of time, which prevents other users from using Gnome."}, {"lang": "es", "value": "El demonio GConf (gconfd) en GConf 2.14.0 crea archivos temporales bajo directorio con nombres basados en el nombre de usuario, incluso cuando GCONF_GLOBAL_LOCKS no est\u00e1 activo, lo cual permite a usuarios locales provocar denegaci\u00f3n de servicio a trav\u00e9s de la creaci\u00f3n de directorios antes de tiempo, lo cual evita que otros usuarios usen gnome."}], "lastModified": "2011-03-08T02:46:48.547", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnome:gconf:2.14.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3D8548A-E41C-47A4-A67B-9DDDAEB71555"}], "operator": "OR"}]}], "vendorComments": [{"comment": "The Red Hat Security Response Team has rated this issue as having low security impact. The risks associated with fixing this bug are greater than the low severity security risk. We therefore currently have no plans to fix this flaw in Red Hat Enterprise Linux 3, 4, or 5.", "lastModified": "2008-05-29T00:00:00", "organization": "Red Hat"}], "sourceIdentifier": "cve@mitre.org"}