Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted terminfo file, as demonstrated by tic.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu ncurses 6.0 |