CVE-2000-1071 Information

Description

The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an \xhost +\ command which allows remote attackers to monitor X Windows events and gain privileges.

Reference

http://www.atstake.com/research/advisories/2000/a100900-1.txt http://www.osvdb.org/7213 http://www.securityfocus.com/bid/1767 https://exchange.xforce.ibmcloud.com/vulnerabilities/5752