漏洞信息详情
Xvt缓冲区溢出漏洞
- CNNVD编号:CNNVD-200112-235
- 危害等级: 高危
- CVE编号: CVE-2001-1561
- 漏洞类型: 缓冲区溢出
- 发布时间: 2001-12-31
- 威胁类型: 本地
- 更新时间: 2006-01-27
- 厂 商: john_bovey
- 漏洞来源: .');">Discovered by Chri...
漏洞简介
Debian Linux 2.2版本的Xvt 2.1版本存在缓冲区溢出漏洞。本地用户可以借助超长(1)-name (2)-T参数执行任意代码。
漏洞公告
Remote the setuid/setgid bits from 'xvt' until a fix is available.
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
参考网址
来源: BID 名称: 2964 链接:http://www.securityfocus.com/bid/2964 来源: DEBIAN 名称: DSA-082 链接:http://www.debian.org/security/2001/dsa-082 来源: BID 名称: 2955 链接:http://www.securityfocus.com/bid/2955 来源: XF 名称: xvt-command-line-bo(6781) 链接:http://www.iss.net/security_center/static/6781.php 来源: BUGTRAQ 名称: 20010702 Xvt 2.1 vulnerability 链接:http://archives.neohapsis.com/archives/bugtraq/2001-07/0024.HTML
受影响实体
- John_bovey Xvt:2.1
补丁
暂无
评论