7.7 High
AI Score
Confidence
High
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
26.2%
Buffer overflow in Library of Assorted Spiffy Things (LibAST) 0.6.1 and earlier, as used in Eterm and possibly other software, allows local users to execute arbitrary code as the utmp user via a long -X command line argument (alternative configuration file name).
freshmeat.net/projects/libast/?branch_id=17907&release_id=217840
secunia.com/advisories/18586
secunia.com/advisories/18632
secunia.com/advisories/18916
securityreason.com/securityalert/373
www.debian.org/security/2006/dsa-976
www.gentoo.org/security/en/glsa/glsa-200601-14.xml
www.mandriva.com/security/advisories?name=MDKSA-2006:029
www.osvdb.org/22735
www.rosiello.org/en/read_bugs.php?id=25
www.securityfocus.com/archive/1/423088/100/0/threaded
www.securityfocus.com/archive/1/423207/100/0/threaded
www.securityfocus.com/archive/1/423366/100/0/threaded
www.securityfocus.com/bid/16350
www.vupen.com/english/advisories/2006/0314
exchange.xforce.ibmcloud.com/vulnerabilities/24303