Screen@* Security Vulnerabilities and Issues — Screen@* CVE List

Lucene search

GnuScreen*

5 matches found

CVE•added 2021/02/09 8:15 p.m.•554 views

CVE-2021-26937

encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.

9.8CVSS9.6AI score0.02977EPSS

CVE•added 2023/04/08 5:15 a.m.•114 views

CVE-2023-24626

socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD), allows local users to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process.

6.5CVSS5.9AI score0.00063EPSS

CVE•added 2017/03/20 4:59 p.m.•90 views

CVE-2017-5618

GNU screen before 4.5.1 allows local users to modify arbitrary files and consequently gain root privileges by leveraging improper checking of logfile permissions.

7.8CVSS7.4AI score0.01848EPSS

CVE•added 2020/02/24 5:15 p.m.•81 views

CVE-2020-9366

A buffer overflow was found in the way GNU Screen before 4.8.0 treated the special escape OSC 49. Specially crafted output, or a special program, could corrupt memory and crash Screen or possibly have unspecified other impact.

9.8CVSS9.9AI score0.00733EPSS

CVE•added 2006/10/24 6:7 p.m.•69 views

CVE-2006-4573

Multiple unspecified vulnerabilities in the "utf8 combining characters handling" (utf8_handle_comb function in encoding.c) in screen before 4.0.3 allows user-assisted attackers to cause a denial of service (crash or hang) via certain UTF8 sequences.

2.6CVSS7.5AI score0.01874EPSS