David Bagley » Xlock : Security Vulnerabilities, CVEs,
xlockmore and xlockf do not properly cleanse user-injected format strings, which allows local users to gain root privileges via the -d option.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-10-20
Updated
2008-09-05
Buffer overflow in xlockmore xlock program version 4.16 and earlier allows local users to read sensitive data from memory via a long -mode option.
Max CVSS
2.1
EPSS Score
0.04%
Published
2000-05-29
Updated
2008-09-10
2 vulnerabilities found