漏洞信息详情

Xvt缓冲区溢出漏洞

• CNNVD编号：CNNVD-200112-235
• 危害等级： 高危
  
• CVE编号： CVE-2001-1561
• 漏洞类型： 缓冲区溢出
• 发布时间： 2001-12-31
• 威胁类型： 本地
• 更新时间： 2006-01-27
• 厂        商： john_bovey
• 漏洞来源： .');">Discovered by Chri...

漏洞简介

Debian Linux 2.2版本的Xvt 2.1版本存在缓冲区溢出漏洞。本地用户可以借助超长(1)-name (2)-T参数执行任意代码。

漏洞公告

Remote the setuid/setgid bits from 'xvt' until a fix is available. Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] .

参考网址

来源: BID 名称: 2964 链接:http://www.securityfocus.com/bid/2964 来源: DEBIAN 名称: DSA-082 链接:http://www.debian.org/security/2001/dsa-082 来源: BID 名称: 2955 链接:http://www.securityfocus.com/bid/2955 来源: XF 名称: xvt-command-line-bo(6781) 链接:http://www.iss.net/security_center/static/6781.php 来源: BUGTRAQ 名称: 20010702 Xvt 2.1 vulnerability 链接:http://archives.neohapsis.com/archives/bugtraq/2001-07/0024.HTML

受影响实体

• John_bovey Xvt:2.1  

补丁

暂无