FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
1613db79-8e52-11da-8426-000fea0a9611	kpopup -- local root exploit and local denial of service Mitre CVE reports: Format string vulnerability in main.cpp in kpopup 0.9.1-0.9.5pre2 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via format string specifiers in command line arguments. misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program. SecurityFocus credits "b0f" b0fnet@yahoo.com Discovery 2003-10-28 Entry 2006-02-07 kpopup >= 0.9.1 le 0.9.5 CVE-2003-1170 8918 CVE-2003-1167 8915 http://www.securityfocus.com/archive/1/342736 http://www.henschelsoft.de/kpopup_en.html

VuXML ID

Description

1613db79-8e52-11da-8426-000fea0a9611

kpopup -- local root exploit and local denial of service

Mitre CVE reports:

Format string vulnerability in main.cpp in kpopup 0.9.1-0.9.5pre2 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via format string specifiers in command line arguments.

misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program.

SecurityFocus credits "b0f" b0fnet@yahoo.com

Discovery 2003-10-28
Entry 2006-02-07
kpopup

>= 0.9.1 le 0.9.5

CVE-2003-1170
8918
CVE-2003-1167
8915
http://www.securityfocus.com/archive/1/342736
http://www.henschelsoft.de/kpopup_en.html