CVE-2016-3100

Summary

CVE	CVE-2016-3100
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2016-07-13 15:59:00 UTC
Updated	2018-10-30 16:27:00 UTC
Description	kinit in KDE Frameworks before 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.

Risk And Classification

Problem Types: CWE-200

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Kde	Kde Frameworks	All	All	All	All
Operating System	Opensuse	Leap	42.1	All	All	All
Operating System	Opensuse	Leap	42.1	All	All	All
Operating System	Opensuse	Opensuse	13.2	All	All	All
Operating System	Opensuse	Opensuse	13.2	All	All	All

References

Reference	Source	Link	Tags
quickgit.kde.org	CONFIRM	quickgit.kde.org
Git repository browser	CONFIRM	quickgit.kde.org
www.kde.com/announcements/kde-frameworks-5.23.0.php	CONFIRM	www.kde.com
363140 – World-readable X11 Cookie, easy key logger	CONFIRM	bugs.kde.org
openSUSE-SU-2016:1723-1: moderate: Security update for kinit	SUSE	lists.opensuse.org
358593 – kdeinit5 create /tmp/xauth-xxx-_y with inappropriate permission.	CONFIRM	bugs.kde.org
Malformed Request	BID	www.securityfocus.com
www.kde.org/info/security/advisory-20160621-1.txt	CONFIRM	www.kde.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.