Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Imlib | Enlightenment | 2.0.01.0.0 (including) | 2.0.01.0.0 (including) |
| Imlib | Enlightenment | 2.1.0.1 (including) | 2.1.0.1 (including) |
| Imlib | Enlightenment | 2.1.0.2 (including) | 2.1.0.2 (including) |
| Imlib | Enlightenment | 2.1.0.3 (including) | 2.1.0.3 (including) |
| Imlib | Enlightenment | 2.1.0.4 (including) | 2.1.0.4 (including) |
| Eterm | Michael_jennings | 0.9.1 (including) | 0.9.1 (including) |
References
- http://online.securityfocus.com/archive/1/250145
- http://online.securityfocus.com/archive/1/251597
- http://www.iss.net/security_center/static/7896.php
- http://www.securityfocus.com/bid/3868
- http://online.securityfocus.com/archive/1/250145
- http://online.securityfocus.com/archive/1/251597
- http://www.iss.net/security_center/static/7896.php
- http://www.securityfocus.com/bid/3868