CVE-2006-0745

EPSS 0.18% · P39 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-0745

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

X.Org X Window Server本地权限提升漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Xorg X Server是Solaris x86平台上可用的X窗口系统显示服务器之一。 Xorg X Server实现上存在设计错误，本地攻击者可能利用此漏洞提升自己的权限。在解析参数时，X Server检查了只有root用户才可以传送-modulepath和-logfile选项。这两个选项分别用于判断模块加载和日志文件的位置，正常情况下非特权用户无法更改这些位置。但上述检查只测试了geteuid函数的地址而不是函数结果本身，因此如果geteuid()的地址不是0的话，非特权用户就可以以root权限在

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-0745

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-0745

请登录查看更多情报信息。

http://support.avaya.com/elmodocs2/security/ASA-2006-078.htmx_refsource_CONFIRM
http://securityreason.com/securityalert/606third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/19316third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/24000vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/19311third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19256third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19676third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19307third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/24001vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/17169vdb-entryx_refsource_BID
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1vendor-advisoryx_refsource_SUNALERT
http://securitytracker.com/id?1015793vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2006/1028vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/1017vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDKSA-2006:056vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.htmlvendor-advisoryx_refsource_FEDORA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697vdb-entrysignaturex_refsource_OVAL
http://www.securityfocus.com/archive/1/428183/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/428230/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2006-0745

Same Patch Batch · n/a · 2006-03-21 · 22 CVEs total

CVE-2006-1325		Streber 跨站脚本攻击(XSS)漏洞
CVE-2006-1335		gnome屏幕保护物理访问方式幕保护崩溃和访问会话漏洞
CVE-2006-1334		Maian Weblog多个SQL注入漏洞
CVE-2006-1333		BetaParticle博客多个SQL注入漏洞
CVE-2006-1332		Noah's Classifieds 'index.php'敏感信息泄露漏洞
CVE-2006-1331		Noah's Classifieds Index.PHP多个跨站脚本攻击漏洞
CVE-2006-1330		PHPWebSite多个SQL注入漏洞
CVE-2006-1329		Jabber Studio JabberD远程拒绝服务漏洞
CVE-2006-1328		Skull-Splitter Download Counter for Wallpapers 'Count.PHP' SQL注入漏洞
CVE-2006-1327		SoftBB 'Reg.PHP' SQL注入漏洞
CVE-2006-1326		Invision Power Board多个跨站脚本攻击漏洞
CVE-2006-1342		Linux 核心Ssockaddr_In.Sin_Zero Kernel内存泄露漏洞
CVE-2006-1324		Woltlab Burning Board Class_DB_MySQL.PHP跨站脚本攻击漏洞
CVE-2006-1061		cURL / libcURL TFTP URL Parser缓冲区溢出漏洞
CVE-2006-1341		Maian Events eventsphp SQL注入漏洞
CVE-2006-1340		CutePHP CuteNews 'function.php'本地文件包含漏洞
CVE-2006-1339		CutePHP CuteNews 'function.php'本地文件包含漏洞
CVE-2006-1338		MailEnable企业/专业版Webmail拒绝服务漏洞
CVE-2006-1337		MailEnable不明POP认证绕过漏洞
CVE-2006-1336		ExtCalendar跨站脚本攻击漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-0745

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-0745

I. Basic Information for CVE-2006-0745

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-0745

III. Intelligence Information for CVE-2006-0745

Same Patch Batch · n/a · 2006-03-21 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-0745

Leave a comment