VDB

GCVE-110-MAGEIA-2014-111

GCVE-110-MAGEIA-2014-111
Advisory Published
Vulnetix · Advisory published March 1, 2014
A vulnerability in x2goserver before 4.0.0.2 in the setgid wrapper x2gosqlitewrapper.c, which does not hardcode an internal path to x2gosqlitewrapper.pl, allowing a remote attacker to change that path. A remote attacker may be able to execute arbitrary code with the privileges of the user running the server process (CVE-2013-4376). A vulnerability in x2goserver before 4.0.0.8 in x2gocleansessions has also been fixed.

Affected Products

VendorProductVersionsPlatforms
Mageiatransifex-client0 (affected), 0.10-1.mga4 (unaffected)
Mageiax2goserver0 (affected), 4.0.1.13-1.mga3 (unaffected), 0 (affected), 4.0.1.13-1.mga3 (unaffected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›