FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xview -- multiple buffer overflows in xv_parse_one

Affected packages
xview < 3.2.1_3


VuXML ID ae6ec9b8-2f43-4d02-8129-c6a3a53ef09d
Discovery 2005-02-09
Entry 2005-06-01

A Debian Security Advisory reports:

Erik Sjölund discovered that programs linked against xview are vulnerable to a number of buffer overflows in the XView library. When the overflow is triggered in a program which is installed setuid root a malicious user could perhaps execute arbitrary code as privileged user.


CVE Name CVE-2005-0076