CVE Vulnerabilities

CVE-2003-0359

Published: Jul 24, 2003 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.

Affected Software

Name Vendor Start Version End Version
Nethack Stichting_mathematisch_centrum 3.4.0 (including) 3.4.0 (including)

References