Vulnerabilities > CVE-2000-0763 - Unspecified vulnerability in David Bagley Xlock 4.16/4.16.1

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
david-bagley
exploit available

Summary

xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.

Vulnerable Configurations

Part Description Count
Application
David_Bagley
2

Exploit-Db

  • descriptionDavid Bagley xlock 4.16 User Supplied Format String Vulnerability (1). CVE-2000-0763. Local exploit for unix platform
    idEDB-ID:20153
    last seen2016-02-02
    modified2000-08-15
    published2000-08-15
    reporternoir
    sourcehttps://www.exploit-db.com/download/20153/
    titleDavid Bagley xlock 4.16 User Supplied Format String Vulnerability 1
  • descriptionDavid Bagley xlock 4.16 User Supplied Format String Vulnerability (2). CVE-2000-0763. Local exploit for unix platform
    idEDB-ID:20154
    last seen2016-02-02
    modified2000-10-21
    published2000-10-21
    reporterBen Williams
    sourcehttps://www.exploit-db.com/download/20154/
    titleDavid Bagley xlock 4.16 User Supplied Format String Vulnerability 2