Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.Referenceshttp://www.securityfocus.com/archive/1/83914http://www.securityfocus.com/bid/1700
