EUVD-1999-1463

Malware in sbrugna...

EUVD-1999-1464

Malware in sbrugna...

EUVD-2005-0386

Malware in sbrugna...

Zblast 1.2 - Local Username Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7836/info A vulnerability has been reported for zblast, an svgalib-based game. The problem occurs when copying data from a user-supplied environment variable into a static memory buffer. By storing excessive data within t...

Itetris 1.6.1/1.6.2 Privileged Arbitrary Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2139/info Itetris, or Intelligent Tetris, is a clone of the popular Tetris puzzle game for linux systems. The svgalib version of Itetris is installed setuid root so that it may access video hardware when run by a regular...

Jan Hubicka Koules 1.4 Svgalib Buffer Overflow Vulnerability

No description provided by source. source : http://www.securityfocus.com/bid/1967/info Koules is an original, arcade-style game authored by Jan Hubicka. The version using svgalib is usually installed setuid root so that it may access video hardware when being run at the console by regular users...

Slackware 12.2 : kernel [updated] (SSA:2009-231-01)

This is a followup to the SSA:2009-230-01 advisory noting some errata. The generic SMP kernel update for Slackware 12.2 was built using the .config for a huge kernel, not a generic one. The kernel previously published as kernel-generic-smp and in the gemsmp.s directory works and is secure, but is...

Debian Security Advisory DSA 310-1 (xaos)

The remote host is missing an update to xaos announced via advisory DSA 310-1. OpenVAS Vulnerability Test $Id: deb3101.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 310-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 608-1 (zgv)

The remote host is missing an update to zgv announced via advisory DSA 608-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 369-1 (zblast)

The remote host is missing an update to zblast announced via advisory DSA 369-1. OpenVAS Vulnerability Test $Id: deb3691.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 369-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-310)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DSA-981-1 bmv - integer overflow

Bulletin has no description...

CVE-2005-0385

Buffer overflow in luxman before 0.41, if used with certain insecure svgalib libraries, allows local users to execute arbitrary code via a long -f command line argument...

CVE-2005-0385

CVE-2005-0385 refers to a local root-buffer overflow in luxman (SVGA-based PacMan clone) prior to version 0.41, exploitable via a long -f argument and insecure svgalib libraries. Debian/DSA-693-1 fixes the issue in luxman 0.41-17.2 (stable) and 0.41-20 (unstable). The Debian advisories describe t...

DMA[2005-0310a] - 'Frank McIngvale LuxMan buffer overflow'

DMA2005-0310a - 'Frank McIngvale LuxMan buffer overflow' Author: Kevin Finisterre Vendor: [email protected] broken Product: 'luxman' References: CAN-2005-0385 http://www.digitalmunition.com/DMA2005-0310a.txt http://www.debian.org/security/2005/dsa-693 Description: LuxMan is a Pac-Man clone for...

Frank McIngvale LuxMan 0.41 Local Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl -w luxman exploit ii luxman 0.41-19.1 Pac-Man clone svgalib based Tested with "security compat" set in /etc/vga/libvga.config on debian unstable 3.1 kfinisterre@jdam:$ ./luxmanex.pl LuxMan v0.41, Copyright c 1995 Frank McIngvale LuxMan comes with...

Debian DSA-310-1 : xaos - improper setuid-root execution

XaoS, a program for displaying fractal images, is installed setuid root on certain architectures in order to use svgalib, which requires access to the video hardware. However, it is not designed for secure setuid execution, and can be exploited to gain root privileges. In these updated packages,...

CVE-2003-0630

CVE-2003-0630 affects the Atari 800 emulator (atari800), specifically the setuid program atari800.svgalib. Multiple buffer overflows in this component, present before version 1.2.2, allow local users to gain privileges via long command line arguments (demonstrated with -osa_rom). The issue is doc...

CVE-2003-0613

Buffer overflow in zblast-svgalib of zblast 1.2.1 and earlier allows local users to execute arbitrary code via the high score file...

CVE-2003-0613

CVE-2003-0613 concerns a buffer overflow in zblast-svgalib (zblast 1.2.1 and earlier) that could allow a local user to execute arbitrary code via the high score file. Debian/Red Hat advisories confirm the vulnerability is local and provide fixes: upgrade zblast to the Debian 1.2pre-5woody2 (stabl...