← back
CVE-2004-0395

CVE-2004-0395

EPSS 0.4%
The xatitv program in the gatos package does not properly drop root privileges when the configuration file does not exist, which allows local users to execute arbitrary commands via shell metacharacters in a system call.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/16273http://www.debian.org/security/2004/dsa-509http://www.securityfocus.com/bid/10437