Ulf Härnhammar from the Debian Security Audit Project discovered a
problem in typespeed, a touch-typist trainer disguised as game This
could lead to a local attacker executing arbitrary code as group
games
For the stable distribution (woody) this problem has been fixed in
version 041-23
For the unstable distribution (sid) this problem will b ...
source: wwwsecurityfocuscom/bid/12569/info
typespeed is prone to a local format string vulnerability Successful could allow privilege escalation
/*
Proof of Concept local exploit for typespeed tool
"enva" content:
*********************************************
#include <stdioh>
#include <stringh>
int main(int argc, c ...