Description
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Job de Haas of ITSX · clocalmultiple
https://www.exploit-db.com/exploits/19497
References (4)
Scores
EPSS
0.0077
EPSS Percentile
73.6%
Details
Status
published
Products (28)
cde/cde
1.0.1
cde/cde
1.0.2
cde/cde
1.1
cde/cde
1.2
cde/cde
2.0
cde/cde
2.1
digital/unix
4.0d
digital/unix
4.0e
digital/unix
4.0f
ibm/aix
4.1
... and 18 more
Published
Sep 13, 1999
Tracked Since
Feb 18, 2026