Vulnerabilities > CVE-2005-0019 - Local Arbitrary Command Execution vulnerability in Yongguang Zhang Hztty 2.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unknown vulnerability in hztty 2.0 and earlier allows local users to execute arbitrary commands.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | Debian Local Security Checks |
NASL id | DEBIAN_DSA-675.NASL |
description | Erik Sjolund discovered that hztty, a converter for GB, Big5 and zW/HZ Chinese encodings in a tty session, can be triggered to execute arbitrary commands with group utmp privileges. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 16365 |
published | 2005-02-10 |
reporter | This script is Copyright (C) 2005-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/16365 |
title | Debian DSA-675-1 : hztty - privilege escalation |