[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2003-0358Date: (C)2003-06-09   (M)2023-12-22


Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.6
Exploit Score: 3.9
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
http://www.securityfocus.com/archive/1/311172/2003-02-08/2003-02-14/0
BID-6806
DSA-316
DSA-350
http://nethack.sourceforge.net/v340/bugmore/secpatch.txt
nethack-s-command-bo(11283)

CPE    3
cpe:/o:debian:debian_linux:3.0
cpe:/o:debian:debian_linux:2.2
cpe:/a:nethack:nethack
CWE    1
CWE-120

© SecPod Technologies