Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbDavide Del VecchioEDB-ID:23236
HistoryOct 08, 2003 - 12:00 a.m.

HP-UX 11 CDE DTPrintInfo - Display Environment Variable Buffer Overflow

2003-10-0800:00:00
Davide Del Vecchio
www.exploit-db.com
18

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/8795/info

It has been reported that dtprintinfo, installed setuid root by default, is susceptible to a locally exploitable buffer overflow vulnerability. The condition is triggered when the value of the DISPLAY environment variable is set to a string exceeding 9777 bytes in length. The vulnerability may allow for local attackers to gain root privileges on the affected host. 

export DISPLAY="`perl -e 'printf "A" x 9777'`"

Related

openvas 2
cve 1
cvelist 1
nvd 1
openvas
openvas
Solaris Update for CDE 1.5 114495-01
2009-06-03 00:00:00
Solaris Update for CDE 1.5 114495-01
2009-06-03 00:00:00
cve
cve
CVE-2003-0840
2003-11-17 05:00:00
cvelist
cvelist
CVE-2003-0840
2003-10-09 04:00:00
nvd
nvd
CVE-2003-0840
2003-11-17 05:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:23236
openvas2cve1cvelist1nvd1