XSOK GunZip Path Environment Variable Local Command Execution Vulnerability

Bugtraq ID: 9321
Class: Input Validation Error
CVE: CVE-2003-0949
Remote: No
Local: Yes
Published: Dec 30 2003 12:00AM
Updated: Jul 12 2009 12:56AM
Credit: Discovery credited to Steve Kemp.
Vulnerable: xsok xsok 1.0 2
- Debian Linux 3.0 sparc
- Debian Linux 3.0 s/390
- Debian Linux 3.0 ppc
- Debian Linux 3.0 mipsel
- Debian Linux 3.0 mips
- Debian Linux 3.0 m68k
- Debian Linux 3.0 ia-64
- Debian Linux 3.0 ia-32
- Debian Linux 3.0 hppa
- Debian Linux 3.0 arm
- Debian Linux 3.0 alpha
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus