X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.
References
Configurations
History
No history.
Information
Published : 2008-01-18 23:00
Updated : 2024-02-04 17:13
NVD link : CVE-2007-5958
Mitre link : CVE-2007-5958
CVE.ORG link : CVE-2007-5958
JSON object : View
Products Affected
x.org
- xserver
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor