xtrlock Unspecified Local Buffer Overflow Vulnerability
BID:12316
Info
xtrlock Unspecified Local Buffer Overflow Vulnerability
| Bugtraq ID: | 12316 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2005-0079 |
| Remote: | No |
| Local: | Yes |
| Published: | Jan 20 2005 12:00AM |
| Updated: | Jul 12 2009 10:06AM |
| Credit: | This issue was disclosed in a Debian advisory. |
| Vulnerable: |
xtrlock xtrlock 2.0 |
| Not Vulnerable: | |
Discussion
xtrlock Unspecified Local Buffer Overflow Vulnerability
xtrlock is reported prone to an unspecified local buffer overflow vulnerability. This issue exists due to insufficient boundary checks performed by the application when copying user-supplied data in to process buffers.
xtrlock is likely to be executed with superuser privileges, allowing the attacker to gain elevated privileges.
Due to a lack of information, further details cannot be provided at the moment. This BID will be updated when more information is available.
xtrlock is reported prone to an unspecified local buffer overflow vulnerability. This issue exists due to insufficient boundary checks performed by the application when copying user-supplied data in to process buffers.
xtrlock is likely to be executed with superuser privileges, allowing the attacker to gain elevated privileges.
Due to a lack of information, further details cannot be provided at the moment. This BID will be updated when more information is available.
Exploit / POC
xtrlock Unspecified Local Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
xtrlock Unspecified Local Buffer Overflow Vulnerability
Solution:
Debian has released advisory DSA 649-1 to address this issue. Please see the referenced advisory for more information.
xtrlock xtrlock 2.0
Solution:
Debian has released advisory DSA 649-1 to address this issue. Please see the referenced advisory for more information.
xtrlock xtrlock 2.0
-
Debian xtrlock_2.0-6woody2_alpha.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_alpha.deb -
Debian xtrlock_2.0-6woody2_arm.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_arm.deb -
Debian xtrlock_2.0-6woody2_hppa.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_hppa.deb -
Debian xtrlock_2.0-6woody2_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_i386.deb -
Debian xtrlock_2.0-6woody2_ia64.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_ia64.deb -
Debian xtrlock_2.0-6woody2_m68k.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_m68k.deb -
Debian xtrlock_2.0-6woody2_mips.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_mips.deb -
Debian xtrlock_2.0-6woody2_mipsel.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_mipsel.deb -
Debian xtrlock_2.0-6woody2_powerpc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_powerpc.deb -
Debian xtrlock_2.0-6woody2_s390.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_s390.deb -
Debian xtrlock_2.0-6woody2_sparc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/x/xtrlock/xtrlock_2.0-6wo ody2_sparc.deb
References
xtrlock Unspecified Local Buffer Overflow Vulnerability
References:
References: