Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2006-1390

The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 1.9.4a and earlier, and Slash'EM 0.0.760 and earlier on Gentoo Linux allows local users in the games group to modify saved games files to execute arbitrary code via buffer overflows and overwrite arbitrary files via symlink attacks.

  • Published: Mar 25, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-1390
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
gentoo / linux 1.4-rc1 1.4-rc1.x
gentoo / linux 1.4-rc3 1.4-rc3.x
gentoo / linux 0.5 0.5.x
gentoo / linux 1.1a 1.1a.x
gentoo / linux 1.4 1.4.x
gentoo / linux 0.7 0.7.x
gentoo / linux 1.2 1.2.x
gentoo / linux 1.4-rc2 1.4-rc2.x