Iomega JaZip Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Iomega JaZip Buffer Overflow Vulnerability

Iomega jaZip, a Unix utility for managing Zip and Jaz removable media, fails to properly validate user-supplied input to the DISPLAY environment variable.

If properly exploited, this can yield root privilege to the attacker.