xshisen -- local buffer overflows

ID 56971FA6-641C-11D9-A097-000854D03344
Type freebsd
Reporter FreeBSD
Modified 2005-01-19T00:00:00


Steve Kemp has found buffer overflows in the handling of the command line flag -KCONV and the XSHISENLIB environment variable. Ulf Härnhammer has detected an unbounded copy from the GECOS field to a char array. All overflows can be exploited to gain group games privileges.