• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ESRI ArcInfo Workstation Multiple Local Buffer Overflow And Format String Vulnerabilities

ESRI ArcInfo Workstation is prone to multiple local buffer overflow and format string vulnerabilities. These vulnerabilities exist in various setuid/setgid utilities installed by ArcInfo Workstation.

The vulnerabilities may be exploited to execute arbitrary code with elevated privileges.

It is believed that the vulnerabilities affect all ArcInfo Workstation installations on UNIX platforms.