199 matches found
Nethack 3 Local Buffer Overflow Vulnerability (3)
No description provided by source. source: http://www.securityfocus.com/bid/6806/info By passing an overly large string when invoking nethack, it is possible to corrupt memory. By exploiting this issue it may be possible for an attacker to overwrite values in sensitive areas of memory, resulting ...
Nethack 3 Local Buffer Overflow Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/6806/info By passing an overly large string when invoking nethack, it is possible to corrupt memory. By exploiting this issue it may be possible for an attacker to overwrite values in sensitive areas of memory, resulting ...
Nethack 3 Local Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/6806/info By passing an overly large string when invoking nethack, it is possible to corrupt memory. By exploiting this issue it may be possible for an attacker to overwrite values in sensitive areas of memory, resulting ...
Gentoo Security Advisory GLSA 200603-23 (nethack slashem falconseye)
The remote host is missing updates announced in advisory GLSA 200603-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200603-23 (nethack slashem falconseye)
The remote host is missing updates announced in advisory GLSA 200603-23. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-316)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 316-1 (nethack)
The remote host is missing an update to nethack announced via advisory DSA 316-1. OpenVAS Vulnerability Test $Id: deb3161.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 316-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
GnomeHack 1.0.5 Local Buffer Overflow Exploit
No description provided by source. / linux/debiangnomehackv1.0.5 buffer overflow, by: [email protected]. this will give you an egid=60games shell if gnomehack is sgid=2755 games on debian/2.2, which has gnomehack. this can also be applied to nethack syntax: ./debgnomehack offset alignment. exampl...
GLSA-200603-23 : NetHack, Slash'EM, Falcon's Eye: Local privilege escalation
The remote host is affected by the vulnerability described in GLSA-200603-23 NetHack, Slash'EM, Falcon's Eye: Local privilege escalation NetHack, Slash'EM and Falcon's Eye have been found to be incompatible with the system used for managing games on Gentoo Linux. As a result, they cannot be playe...
CVE-2006-1390
The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a and earlier, and Slash'EM 0.0.760 and earlier on Gentoo Linux allows local users in the games group to modify saved games files to execute arbitrary code via buffer overflows and overwrite arbitrary files via symlink attacks...
Buffer overflow
The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a and earlier, and Slash'EM 0.0.760 and earlier on Gentoo Linux allows local users in the games group to modify saved games files to execute arbitrary code via buffer overflows and overwrite arbitrary files via symlink attacks...
CVE-2006-1390
The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a and earlier, and Slash'EM 0.0.760 and earlier on Gentoo Linux allows local users in the games group to modify saved games files to execute arbitrary code via buffer overflows and overwrite arbitrary files via symlink attacks...
CVE-2006-1390
CVE-2006-1390 affects NetHack 3.4.3-r1 and earlier, Falcon’s Eye 1.9.4a and earlier, and Slash’EM 0.0.760 and earlier on Gentoo Linux. The connected documents describe a local privilege escalation where a member of the games group can modify saved-game state or create/overwrite save files to exec...
NetHack, Slash'EM, Falcon's Eye games privilege escalation
User from games group can modify game data to cause code execution if game is executed by another user...
[ GLSA 200603-23 ] NetHack, Slash'EM, Falcon's Eye: Local privilege escalation
Gentoo Linux Security Advisory GLSA 200603-23 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
NetHack, Slash'EM, Falcon's Eye: Local privilege escalation
Background NetHack is the classic single player dungeon exploration game. Slash'EM and Falcon's Eye are NetHack variants. Description NetHack, Slash'EM and Falcon's Eye have been found to be incompatible with the system used for managing games on Gentoo Linux. As a result, they cannot be played...
Debian DSA-316-1 : nethack - buffer overflow, incorrect permissions
The nethack and slashem packages are vulnerable to a buffer overflow exploited via a long '-s' command line option. This vulnerability could be used by an attacker to gain gid 'games' on a system where nethack is installed. Additionally, some setgid binaries in the nethack package have incorrect...
CVE-2003-0359
nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code...
DEBIAN-CVE-2003-0359
nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code...
CVE-2003-0359
nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code...