Description
Buffer overflow in the mtink status monitor, as included in the printer-drivers package in Mandrake Linux, allows local users to execute arbitrary code via a long HOME environment variable.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Karol Wiesek · textlocallinux
https://www.exploit-db.com/exploits/22189
References (5)
Core 5
Core References
Vendor Advisory vendor-advisory
x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2003:010
Third Party Advisory mailing-list
x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0029.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1005959
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/6656
Exploit, Patch, Vendor Advisory x_refsource_misc
http://www.idefense.com/advisory/01.21.03.txt
Scores
EPSS
0.0015
EPSS Percentile
35.0%
Details
Status
published
Products (3)
jean-jacques_sarton/mtink
0.9.32
jean-jacques_sarton/mtink
0.9.33
jean-jacques_sarton/mtink
0.9.52
Published
Feb 07, 2003
Tracked Since
Feb 18, 2026