Overview
The X11 library included with many UNIX variants contains a buffer-overflow vulnerability that may allow attackers to gain root privileges.
Description
The X11 library contains an unspecified buffer-overflow vulnerability. Programs that use this library and accept the -xrm option (including xterm) also contain this vulnerability. |
Impact
Attackers may be able to gain root privileges by exploiting affected setuid root programs (such as xterm) that use the X11 library. |
Solution
Apply a patch See the Systems Affected section for details, or contact your vendor directly. |
None. |
Vendor Information
169059
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to jG gM for reporting this vulnerability.
This document was written by Shawn Van Ittersum.
Other Information
| CVE IDs: | CVE-2002-0517 |
| Severity Metric: | 6.78 |
| Date Public: | 1997-05-28 |
| Date First Published: | 2002-09-16 |
| Date Last Updated: | 2003-03-24 20:53 UTC |
| Document Revision: | 15 |