← CVECheck
HomeVulnerabilities

CVE-2003-0949 — MEDIUM severity vulnerability (xsok 1.02 does not properly drop privileges before finding a)

xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands.

CVE IDCVE-2003-0949
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-02-03
Last modified2026-04-16
Descriptionxsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →