24 matches found
EUVD-2020-26452
Malware in sbrugna...
EUVD-2020-26450
Malware in sbrugna...
EUVD-2019-9497
Malware in sbrugna...
EUVD-2020-26453
Malware in sbrugna...
EUVD-2020-26463
Malware in sbrugna...
EUVD-2006-1394
Malware in sbrugna...
EUVD-2020-26454
Malware in sbrugna...
EUVD-2020-26451
Malware in sbrugna...
EUVD-2023-28807
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-5253
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file usually .nethackrc which could be exploited. This bug is...
Linux Distros Unpatched Vulnerability : CVE-2020-5210
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In NetHack before 3.6.5, an invalid argument to the -w command line option can cause a buffer overflow resulting in a crash or remote code execution/privilege...
Linux Distros Unpatched Vulnerability : CVE-2020-5254
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In NetHack before 3.6.6, some out-of-bound values for the hilitestatus option can be exploited. NetHack 3.6.6 resolves this issue. CVE-2020-5254 Note that Nessu...
Linux Distros Unpatched Vulnerability : CVE-2019-19905
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability when reading very long lines from configuration files. This affects systems that have...
CVE-2020-5253
NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file usually .nethackrc which could be exploited. This bug is patched in NetHack 3.6.0...
CVE-2023-24809 NetHack Call command buffer overflow
NetHack is a single player dungeon exploration game. Starting with version 3.6.2 and prior to version 3.6.7, illegal input to the "C" call command can cause a buffer overflow and crash the NetHack process. This vulnerability may be a security issue for systems that have NetHack installed suid/sgi...
MGASA-2021-0077 Updated nethack packages fix security vulnerabilities
Updated nethack packages fix security vulnerabilities: NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability when reading very long lines from configuration files. This affects systems that have NetHack installed suid/sgid, and shared systems that allow users to upload their own...
NetHack Buffer Overflow Vulnerability (CNVD-2020-14202)
NetHack is a role-playing single-player game. A security vulnerability exists in NetHack. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in incorrect read and write operations being performed to...
DEBIAN-CVE-2020-5211
In NetHack before 3.6.5, an invalid extended command in value for the AUTOCOMPLETE configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems...
UBUNTU-CVE-2020-5210
In NetHack before 3.6.5, an invalid argument to the -w command line option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to influence...
Debian DSA-316-1 : nethack - buffer overflow, incorrect permissions
The nethack and slashem packages are vulnerable to a buffer overflow exploited via a long '-s' command line option. This vulnerability could be used by an attacker to gain gid 'games' on a system where nethack is installed. Additionally, some setgid binaries in the nethack package have incorrect...