Debian DSA-316-1 : nethack - buffer overflow, incorrect permissions

NASLDB: Debian DSA-316-1 : nethack - buffer overflow, incorrect permissions

General

ID: 15153
Name: Debian DSA-316-1 : nethack – buffer overflow, incorrect permissions

Summary: Checks dpkg output for the updated package

Credits: –

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Port: 0
Family: Debian Local Security Checks
Type: Local

Description

The nethack and slashem packages are vulnerable to a buffer overflow
exploited via a long ‘-s’ command line option. This vulnerability
could be used by an attacker to gain gid ‘games’ on a system where
nethack is installed.

Additionally, some setgid binaries in the nethack package have
incorrect permissions, which could allow a user who gains gid ‘games’
to replace these binaries, potentially causing other users to execute
malicious code when they run nethack.

Note that slashem does not contain the file permission problem
CAN-2003-0359.

Exploiting

Exploit Available: True
Exploitability Ease: Exploits are available

Sources

CVE: CVE-2003-0358
OSVDB: –
Bugtraq: 6806
scipID: –

Timeline

Vulnerability Disclosure: 2003/02/09
Patch Release: 2003/06/11
Plugin Release: 2004/09/29

Plugin

Version: 1.17
Filename: debian_DSA-316.nasl
Filesize: 4236 bytes
MD5 Hash: 7c3e3675789fe1127fb23486a43d3714

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"

Latest Plugins

Latest Plugins

scip AG