Published: 02/05/2005 Updated: 07/11/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in luxman prior to 0.41, if used with certain insecure svgalib libraries, allows local users to execute arbitrary code via a long -f command line argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
frank mcingvale luxman 0.41
frank mcingvale luxman 0.41_17

#!/usr/bin/perl -w # # luxman exploit # # ii luxman 041-191 Pac-Man clone (svgalib based) # # Tested with "security compat" set in /etc/vga/libvgaconfig on debian unstable 31 # # kfinisterre@jdam:~$ /luxman_expl # LuxMan v041, Copyright (c) 1995 Frank McIngvale # LuxMan comes with ABSOLUTELY NO WARRANTY; see COPYING for details ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/393195/2005-03-13/2005-03-19/0 http://www.debian.org/security/2005/dsa-693 http://www.securityfocus.com/bid/12797 http://secunia.com/advisories/14582 https://exchange.xforce.ibmcloud.com/vulnerabilities/19680 http://www.digitalmunition.com/DMA%5B2005-0310a%5D.txt https://nvd.nist.gov https://www.exploit-db.com/exploits/877/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-0385

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect