5 matches found
CVE-2011-2922
ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attacker to escalate privileges to root and use the "GTKMODULES" environment variable to possibly execute arbitrary code...
CVE-2011-2922
CVE-2011-2922 affects ktsuss versions 1.4 and earlier, where the GTK interface is spawned with root privileges. This local vulnerability can allow an attacker to escalate to root and potentially abuse the GTK_MODULES environment variable to execute arbitrary code. Connected sources confirm the ro...
CVE-2011-2922
ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attacker to escalate privileges to root and use the "GTKMODULES" environment variable to possibly execute arbitrary code...
Gentoo Security Advisory GLSA 201201-15 (ktsuss)
The remote host is missing updates announced in advisory GLSA 201201-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-201201-15 : ktsuss: Privilege escalation
The remote host is affected by the vulnerability described in GLSA-201201-15 ktsuss: Privilege escalation Two vulnerabilities have been found in ktuss: Under specific circumstances, ktsuss skips authentication and fails to change the effective UID back to the real UID CVE-2011-2921. The GTK...