Caldera XLock Buffer Overflow Vulnerability

Caldera XLock Buffer Overflow Vulnerability

xlock is an application distributed with most versions of the X Window System. The vulnerable version is included with CDE distributed with Caldera UnixWare and Open Unix operating systems.

A problem has been discovered that could allow local users to gain elevated privileges. The problem is a buffer overflow in xlock. A buffer overflow in this program makes it possible for local users to execute arbitrary code. This could result in a local user gaining elevated privileges, and potentially administrative access.

It is possible that this vulnerability may be already known on other platforms.