Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0359HistoryOct 03, 2022 - 4:15 p.m.
CVE-2003-0359
2022-10-0316:15:44
Debian Security Bug Tracker
security-tracker.debian.org
12
nethack 3.4.0
setgid
binary insecurity
local privilege escalation
unix
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | nethack | < 3.4.1-1 | nethack_3.4.1-1_all.deb |
| Debian | 11 | all | nethack | < 3.4.1-1 | nethack_3.4.1-1_all.deb |
| Debian | 999 | all | nethack | < 3.4.1-1 | nethack_3.4.1-1_all.deb |
| Debian | 13 | all | nethack | < 3.4.1-1 | nethack_3.4.1-1_all.deb |
| Debian | 12 | all | slashem | < 0.0.6E4F8-6 | slashem_0.0.6E4F8-6_all.deb |
| Debian | 11 | all | slashem | < 0.0.6E4F8-6 | slashem_0.0.6E4F8-6_all.deb |
| Debian | 999 | all | slashem | < 0.0.6E4F8-6 | slashem_0.0.6E4F8-6_all.deb |
| Debian | 13 | all | slashem | < 0.0.6E4F8-6 | slashem_0.0.6E4F8-6_all.deb |
Related
cvelist
cvelist
CVE-2003-0359
2022-10-03 16:15:44
cve
cve
CVE-2003-0359
2022-10-03 16:15:44
nvd
nvd
CVE-2003-0359
2003-07-24 04:00:00
osv
osv
nethack - buffer overflow, incorrect permissions
2003-06-11 00:00:00
falconseye - buffer overflow
2003-07-15 00:00:00
nessus
nessus
Debian DSA-350-1 : falconseye - buffer overflow
2004-09-29 00:00:00
Debian DSA-316-1 : nethack - buffer overflow, incorrect permissions
2004-09-29 00:00:00
debian
debian
openvas
openvas
Debian Security Advisory DSA 316-1 (nethack)
2008-01-17 00:00:00
Debian Security Advisory DSA 350-1 (falconseye)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-350)
2008-01-17 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2003-0359