CVE-2000-0763

xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.

Date published : 2000-10-13

http://www.securityfocus.com/bid/1585

http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000815231724.A14694@subterrain.net