CVE-2004-2552

Name of the Vulnerable Software and Affected Versions XBoard versions 4.2.7 and earlier

Description A buffer overflow issue might allow local users to execute arbitrary code via a long -icshost command line argument. However, since the program is not setuid and not normally called from remote programs, there may not be a typical attack vector for the issue that crosses privilege boundaries.

Recommendations For XBoard versions 4.2.7 and earlier, consider applying configuration changes to restrict the use of the -icshost command line argument until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.