Ultrix DXTerm Setup Parameter Local Buffer Overflow Vulnerability

Ultrix dxterm is reported to be prone to a buffer overflow vulnerability. The issue presents itself when dxterm handles a superfluous 'setup' command line argument.

Because variables that are crucial to controlling program execution flow for dxterm are stored adjacent to the affected buffer, an attacker may corrupt these values and influence dxterm program execution flow into attacker-controlled memory.


 

Privacy Statement
Copyright 2010, SecurityFocus