CVE-2008-0162

misc.c in splitvt 1.6.6 and earlier does not drop group privileges before executing xprop, which allows local users to gain privileges.
Severity
UNKNOWN
AV:L/AC:L/Au:N/C:C/I:C/A:C
Atk. Vector
LOCAL
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
sam_lantingasplitvt
𝑥
≤ 1.6.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
splitvt
bookworm
1.6.6-13
fixed
bullseye
1.6.6-13
fixed
sid
1.6.6-17
fixed
trixie
1.6.6-17
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
splitvt
jaunty
Fixed 1.6.6-4
released
intrepid
Fixed 1.6.6-4
released
hardy
Fixed 1.6.6-4
released
gutsy
ignored
feisty
ignored
edgy
ignored
dapper
Fixed 1.6.5-9etch1build0.6.06.1
released
Common Weakness Enumeration