Xauthority Style Access Control Bypass in SCO OpenServer 5.0.5-5.0.7

Xauthority Style Access Control Bypass in SCO OpenServer 5.0.5-5.0.7

CVE-2004-0390 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.

Learn more about our Cis Benchmark Audit For Server Software.