A local socket hijacking vulnerability affects X.org X Windows Server. This issue is due to a failure of the application to securely create socket directories.
An attacker may leverage this issue to hijack socket sessions, potentially facilitating arbitrary read and write access with the privileges of the user that started the vulnerable server.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.
SCO has released advisory SCOSA-2005.8 along with updates for their UnixWare products. Please see the referenced advisory for more information.