Multiple buffer overflows in ArcGIS for ESRI ArcInfo Workstation 9.0 allow local users to execute arbitrary code via long command line arguments to (1) asmaster, (2) asuser, (3) asutility, (4) se, or (5) asrecovery.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Arcinfo_workstation | Esri | 9.0 (including) | 9.0 (including) |
References
- http://marc.info/?l=full-disclosure\u0026m=111489411524630\u0026w=2
- http://secunia.com/advisories/15196
- http://securitytracker.com/id?1013852
- http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch\u0026PID=14\u0026MetaID=1015
- http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt
- http://marc.info/?l=full-disclosure\u0026m=111489411524630\u0026w=2
- http://secunia.com/advisories/15196
- http://securitytracker.com/id?1013852
- http://support.esri.com/index.cfm?fa=downloads.patchesServicePacks.viewPatch\u0026PID=14\u0026MetaID=1015
- http://www.digitalmunition.com/DMA%5B2005-0425a%5D.txt