Published: 30/03/2006 Updated: 20/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games prior to 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another user launches tetris-bsd.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bsd-games tetris-bsd gold

Debian Bug report logs - #361160 tetris-bsd reads high score info insecurely Package: bsdgames; Maintainer for bsdgames is Debian Games Team <pkg-games-devel@listsaliothdebianorg>; Source for bsdgames is src:bsdgames (PTS, buildd, popcon) Reported by: Joey Hess <joeyh@debianorg> Date: Thu, 6 Apr 2006 23:03:14 UT ...

NVD-CWE-Other http://www.gentoo.org/security/en/glsa/glsa-200603-26.xml http://bugs.gentoo.org/show_bug.cgi?id=122399 http://www.securityfocus.com/bid/17308 http://secunia.com/advisories/19442 http://www.osvdb.org/24261 https://exchange.xforce.ibmcloud.com/vulnerabilities/25611 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361160 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-1539

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect