CVE-2008-0162 Information

Description

misc.c in splitvt 1.6.6 and earlier does not drop group privileges before executing xprop which allows local users to gain privileges.

Reference

http://secunia.com/advisories/29064 http://secunia.com/advisories/29080 http://secunia.com/advisories/29190 http://security.gentoo.org/glsa/glsa-200803-05.xml http://www.debian.org/security/2008/dsa-1500 http://www.securityfocus.com/bid/27936