Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sco unixware 7.1.1 |
||
sco unixware 7.1.3 |
||
sco open unix 8.0 |