New Search

CDE libDtHelp Buffer Overflow

oval:org.mitre.oval:def:5141

Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature (2) DTSEARCHPATH or (3) LOGNAME.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 7
  • Sun Solaris 8
  • Sun Solaris 9
Class:
vulnerability
Reference(s):
  • CVE-2003-0834
Product(s):
  • Common Desktop Environment