2 matches found
CVE-2001-1178
Buffer overflow in xman allows local users to gain privileges via a long MANPATH environment variable...
xxman.sh
xman doesn't drop privileges anywheres in the program. but, does support suid installation. so, exploiting via a system call is much easier than the buffer overflow in MANPATH, mentioned in another bugtraq posting. here is an example of such an exploitation possibility: -- xxman.sh -- !/bin/sh...