Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1395

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-1395
Last Modified 10 Sep 2008 03:38:54
Published 03 May 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1395

Summary

Buffer overflow in Ce/Ceterm (aka ARPUS/Ce) 2.5.4 and earlier may allow local users to gain privileges via a long (1) XAPPLRESLANGPATH or (2) XAPPLRESDIR environment variable, or (3) command line argument.

Vulnerable Systems


References

SECUNIA - 15197

FULLDISC - 20050501 DMA[2005-0501a] - 'ARPUS/Ce setuid buffer overflow and file overwrite'

MISC - http://www.digitalmunition.com/DMA[2005-0501a].txt

SECTRACK - 1013855


Last Updated: 27 May 2016 10:40:09