Vulnerability Details CVE-2000-0976
Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.3%
CVSS Severity
CVSS v2 Score 4.6
References
- ftp://patches.sgi.com/support/free/security/advisories/20020502-01-I
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0211.html
- http://www.iss.net/security_center/static/5751.php
- http://www.securityfocus.com/bid/1805
- ftp://patches.sgi.com/support/free/security/advisories/20020502-01-I
- http://archives.neohapsis.com/archives/bugtraq/2000-10/0211.html
- http://www.iss.net/security_center/static/5751.php
- http://www.securityfocus.com/bid/1805
Products affected by CVE-2000-0976
-
cpe:2.3:a:xfree86_project:xlib:3.3x