Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-354
HistoryJul 29, 2003 - 12:00 a.m.

xconq - buffer overflows

2003-07-2900:00:00
Google
osv.dev
5

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

JSON

Steve Kemp discovered a buffer overflow in xconq, in processing the
USER environment variable. In the process of fixing this bug, a
similar problem was discovered with the DISPLAY environment
variable. This vulnerability could be exploited by a local attacker
to gain gid ‘games’.

For the current stable distribution (woody) this problem has been fixed
in version 7.4.1-2woody2.

For the unstable distribution (sid) this problem will be fixed soon.
Refer to Debian bug #202963.

We recommend that you update your xconq package.

Related

openvas 2
nessus 1
debian 1
cve 1
ubuntucve 1
openvas
openvas
Debian: Security Advisory (DSA-354)
2008-01-17 00:00:00
Debian Security Advisory DSA 354-1 (xconq)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-354-1 : xconq - buffer overflows
2004-09-29 00:00:00
debian
debian
[SECURITY] [DSA-354-1] New xconq packages fix buffer overflows
2003-07-29 23:33:10
cve
cve
CVE-2003-0607
2004-03-29 05:00:00
ubuntucve
ubuntucve
CVE-2003-0607
2004-03-29 00:00:00

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-354
openvas2nessus1debian1cve1ubuntucve1