source: wwwsecurityfocuscom/bid/1008/info
A vulnerability exists in the setxconf utility, as shipped with Corel Linux 10 The -T option to setxconf will run xinit, which euid root xinit, when executed, will invoke the contents on ~/xserverrc A malicious user could therefore execute commands as root
cat > ~/xserverrc
echo "+ +" & ...