CVE-2003-0359

nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.
References
Link Resource
http://www.debian.org/security/2003/dsa-316 Patch Vendor Advisory
http://www.debian.org/security/2003/dsa-316 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:stichting_mathematisch_centrum:nethack:3.4.0:*:*:*:*:*:*:*

History

20 Nov 2024, 23:44

Type Values Removed Values Added
References () http://www.debian.org/security/2003/dsa-316 - Patch, Vendor Advisory () http://www.debian.org/security/2003/dsa-316 - Patch, Vendor Advisory

Information

Published : 2003-07-24 04:00

Updated : 2024-11-20 23:44


NVD link : CVE-2003-0359

Mitre link : CVE-2003-0359

CVE.ORG link : CVE-2003-0359


JSON object : View

Products Affected

stichting_mathematisch_centrum

  • nethack