Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1744

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2006-1744
Last Modified 05 Sep 2008 05:02:44
Published 12 Apr 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-1744

Summary

Buffer overflow in pl_main.c in sail in BSDgames before 2.17-7 allows local users to execute arbitrary code via a long player name that is used in a scanf function call.

Vulnerable Systems

Application

  • Joey Hess Bsdgames 2.12

  • Joey Hess Bsdgames 2.13

  • Joey Hess Bsdgames 2.14

  • Joey Hess Bsdgames 2.17

  • Joey Hess Bsdgames 2.9


References

OSVDB - 24634

DEBIAN - DSA-1036

SECUNIA - 19687

BID - 17401

MISC - http://www.pulltheplug.org/fu/?q=node/56

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=360989

SREASON - 736


Last Updated: 27 May 2016 10:42:10