module
Xorg X11 Server SUID modulepath Privilege Escalation
| Disclosed |
|---|
| Oct 25, 2018 |
Disclosed
Oct 25, 2018
Description
This module attempts to gain root privileges with SUID Xorg X11 server
versions 1.19.0
A permission check flaw exists for -modulepath and -logfile options when
starting Xorg. This allows unprivileged users that can start the server
the ability to elevate privileges and run arbitrary code under root
privileges.
This module has been tested with CentOS 7 (1708).
CentOS default install will require console auth for the users session.
Xorg must have SUID permissions and may not start if running.
On successful exploitation artifacts will be created consistant
with starting Xorg.
versions 1.19.0
A permission check flaw exists for -modulepath and -logfile options when
starting Xorg. This allows unprivileged users that can start the server
the ability to elevate privileges and run arbitrary code under root
privileges.
This module has been tested with CentOS 7 (1708).
CentOS default install will require console auth for the users session.
Xorg must have SUID permissions and may not start if running.
On successful exploitation artifacts will be created consistant
with starting Xorg.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.