• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

XGalaga Environment Variable Multiple Buffer Overflow Vulnerabilities

Several buffer overflow vulnerabilities have been reported for xgalaga when parsing certain environment variables.

An attacker can exploit this vulnerability by setting an overly long environment variable and invoking xgalaga. This will result in the corruption of sensitive memory with attacker-supplied values.