Caldera OpenServer 5.0.x - XSCO Color Database File Heap Overflow

EDB-ID:

21531

CVE:



Author:

kf

Type:

dos


Platform:

Unix

Date:

2002-06-11


source: https://www.securityfocus.com/bid/4985/info

OpenServer is commercial Unix operating system originally developed by SCO, and distributed by Caldera.

It may be possible for a local user to gain elevated privileges. When Xsco is executed, and an excessively long argument is supplied to the -co flag, a heap overflow occurs. This problem could allow a local user to supply a maliciously formatted string with the -co option that could result in the execution of arbitrary code, and elevated privileges.

./Xsco :1 -co `perl -e 'print "A" x 9000'`