Unrated severityNVD Advisory· Published May 3, 2005· Updated Jun 16, 2026
CVE-2005-1394
CVE-2005-1394
Description
Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lockmgr.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:esri:arcinfo_workstation:9.0:*:*:*:*:*:*:*
- Range: =9.0
Patches
Vulnerability mechanics
References
5- securitytracker.com/idnvdBroken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- www.digitalmunition.com/DMA%5B2005-0425a%5D.txtnvdPatchThird Party Advisory
- marc.infonvdMailing ListThird Party Advisory
- support.esri.com/index.cfmnvdVendor Advisory
- secunia.com/advisories/15196nvdBroken Link
News mentions
0No linked articles in our index yet.