CVE-2011-2922

Name of the Vulnerable Software and Affected Versions ktsuss versions 1.4 and prior

Description The issue allows a local attacker to escalate privileges to root. This can be achieved by spawning the GTK interface to run as root, potentially using the GTK MODULES environment variable to execute arbitrary code.

Recommendations For versions 1.4 and prior, consider disabling the GTK interface or restricting its use to prevent privilege escalation until a fix is available. Avoid using the GTK MODULES environment variable in sensitive environments to minimize the risk of exploitation.