Family: Debian Local Security Checks --> Category: infos
[DSA368] DSA-368-1 xpcd Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Steve Kemp discovered a buffer overflow in xpcd-svga which can be
triggered by a long HOME environment variable. This vulnerability
could be exploited by a local attacker to gain root rights.
For the stable distribution (woody) this problem has been fixed in
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you update your xpcd package.
Solution : http://www.debian.org/security/2003/dsa-368
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.