Davin McCall dlogin Buffer Overflow Vulnerability

Davin McCall dlogin Buffer Overflow Vulnerability

dlogin is a replacement for the Unix login utility, targetted at home users of Linux systems. It supports a variety of convenience features for local console users, including the ability to log onto additional virtual terminals without the need to reauthenticate, and allowing local console users to perform a variety of system tasks without the need to authenticate as root.

A vulnerability exists in some versions of dlogin. It is possible to overflow a buffer. While further details are not currently available, overflows may lead to stack corruption, and to eventual execution of arbitrary code.