Info

Disclosure

Oct 24, 2002

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A local buffer overflow exists in NetBSD trek game. The trek command fails to validate input resulting in a buffer overflow. With a specially crafted request of more than 100 characters, an attacker can cause the execution of arbitrary code with group "games" privileges resulting in a loss of integrity.

Classification

Location: Local Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown

Solution

Upgrade to version 1.6.1 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Remove or restrict access to the game. # rm /usr/games/trek # rm /usr/games/hide/trek -or- # chmod 400 /usr/games/trek # chmod 400 /usr/games/hide/trek

Products

NetBSD Foundation, Inc.	NetBSD	1.5
		1.5.1
		1.5.2
		1.5.3
		1.6

References

ISS X-Force ID: 10458
CVE ID: 2002-1543 (see also: NVD)
Bugtraq ID: 6036
Vendor Specific Advisory URL: ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-025.txt.asc

Credit

Niels Heinen -

Direct URL: http://osvdb.org/7570

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

NetBSD Foundation, Inc.

NetBSD

References

Credit