CVE-2003-0359

Medium

4.6/10

Summary

nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jul 24, 2003

CVE-2003-0359

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS