Integer signedness error in ansi.c for GNU screen 4.0.1 and previous versions, and 3.9.15 and previous versions, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu screen 3.9.15 |
||
gnu screen 3.9.4 |
||
gnu screen 3.9.11 |
||
gnu screen 3.9.13 |
||
gnu screen 3.9.8 |
||
gnu screen 3.9.9 |
||
gnu screen 3.9.10 |
||
gnu screen 4.0.1 |