Back to search
CVE-2000-0763
Published: Oct 13, 2000
Modified: Aug 8, 2024
PUBLISHED
Description
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20000816 xlockmore: possible shadow file compromise
vendor-advisory
x_refsource_DEBIAN
FreeBSD-SA-00:44.xlockmore
vendor-advisory
x_refsource_FREEBSD
20000816 xlock vulnerability
mailing-list
x_refsource_BUGTRAQ
20000823 MDKSA-2000:038 - xlockmore update
mailing-list
x_refsource_BUGTRAQ
1585
vdb-entry
x_refsource_BID
20000817 Conectiva Linux Security Announcement - xlockmore
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now