RSS   Vulnerabilities for 'XSOK'   RSS

2004-02-17
 
CVE-2004-0074

 

 
Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.

 
2004-02-03
 
CVE-2003-0949

 

 
xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands.

 


Copyright 2024, cxsecurity.com

 

Back to Top