OpenBSD and NetBSD permit usermode code to kill the display server and write to the X.Org /dev/xf86 device, which allows local users with root privileges to reduce securelevel by replacing the System Management Mode (SMM) handler via a write to an SMRAM address within /dev/xf86 (aka the video card memory-mapped I/O range), and then launching the new handler via a System Management Interrupt (SMI), as demonstrated by a write to Programmed I/O port 0xB2.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-12-26 23:28
Updated : 2024-02-28 11:01
NVD link : CVE-2006-6730
Mitre link : CVE-2006-6730
CVE.ORG link : CVE-2006-6730
JSON object : View
Products Affected
netbsd
- netbsd
openbsd
- openbsd
CWE