CVE-2006-6730

NONECVSS 0.0

0.0

OpenBSD and NetBSD permit usermode code to kill the display server and write to the X.Org /dev/xf86 device, which allows local users with root privileges to reduce securelevel by replacing the System Management Mode (SMM) handler via a write to an SMRAM address within /dev/xf86 (aka the video card memory-mapped I/O range), and then launching the new handler via a System Management Interrupt (SMI), as demonstrated by a write to Programmed I/O port 0xB2.

🔗 References (12)

cve@mitrehttp://lists.freedesktop.org/archives/xorg/2004-June/000927.html
cve@mitrehttp://www.cansecwest.com/slides06/csw06-duflot.ppt
cve@mitrehttp://www.securityfocus.com/archive/1/454379/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/454510/100/0/threaded
cve@mitrehttp://www.securityfocus.com/archive/1/454706/100/0/threaded
cve@mitrehttp://www.ssi.gouv.fr/fr/sciences/fichiers/lti/cansecwest2006-duflot-paper.pdf
af854a3a-2127-422b-91ae-364da2661108http://lists.freedesktop.org/archives/xorg/2004-June/000927.html
af854a3a-2127-422b-91ae-364da2661108http://www.cansecwest.com/slides06/csw06-duflot.ppt
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/454379/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/454510/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/454706/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.ssi.gouv.fr/fr/sciences/fichiers/lti/cansecwest2006-duflot-paper.pdf

Is Your Infrastructure Affected by CVE-2006-6730?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-6730

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-6730?