Published: 12/03/2001 Updated: 10/10/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Format string vulnerability in splitvt prior to 1.6.5 allows local users to execute arbitrary commands via the -rcfile command line argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sam lantinga splitvt 1.6.4
debian debian linux 2.2

It was reported recently that splitvt is vulnerable to numerous buffer overflow attack and a format string attack An attacker was able to gain access to the root user id We recommend you upgrade your splitvt package immediately ...

source: wwwsecurityfocuscom/bid/2210/info splitvt is a VT100 window splitter, designed to allow the user two command line interfaces in one terminal window, originally written by Sam Lantinga It is freely available, open source, and included with many variants of the Linux Operating System A problem in the program could allow for a for ...

NVD-CWE-Other http://www.securityfocus.com/bid/2210 http://www.debian.org/security/2001/dsa-014 http://marc.info/?l=bugtraq&m=97958269320974&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/5948 https://nvd.nist.gov https://www.debian.org/security/./dsa-014 https://www.exploit-db.com/exploits/20556/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-0111

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect