vendor:
XTerm
by:
Unknown
7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name: XTerm
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
1996
Buffer Overflow Exploit in XTerm
The code is an example of a buffer overflow exploit in the XTerm application. The exploit uses a shellcode to execute arbitrary commands with root privileges. The exploit takes advantage of a buffer overflow vulnerability in the xterm program to overwrite the return address and redirect the program execution to the shellcode.
Mitigation:
The vulnerability can be mitigated by applying the patch for the xterm program that fixes the buffer overflow issue. It is recommended to update to the latest version of xterm to prevent exploitation.