CVE-2003-0358
falconseye - buffer overflow
EPSS 0.23%
Description
Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option.
How to fix CVE-2003-0358
To remediate CVE-2003-0358, upgrade the affected package to a fixed version below.
- Debian/falconseye—upgrade to 1.9.3-7woody3 or later
- Debian/jnethack—upgrade to 1.1.5-11woody2 or later
- Debian/nethack—upgrade to 3.4.0-3.0woody3 or later
- —upgrade to 3.4.1-1 or later
- —upgrade to 3.4.0-3.0woody3 or later
- —upgrade to 0.0.6E4F8-4.0woody3 or later
- —upgrade to 0.0.6E4F8-4.0woody3 or later
- —upgrade to 0.0.6E4F8-6 or later
Is CVE-2003-0358 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (8)
- from 0, < 1.9.3-7woody3
- from 0, < 1.1.5-11woody2
- from 0, < 3.4.0-3.0woody3
- from 0, < 3.4.1-1
- from 0, < 3.4.0-3.0woody3
- from 0, < 0.0.6E4F8-4.0woody3
- from 0, < 0.0.6E4F8-4.0woody3
- from 0, < 0.0.6E4F8-6