Buffer Overflow Vulnerability in GNU Screen Affects Local Users
CVE-2003-0972

Currently unrated

Key Information:

Vendor

Gnu

Status
Vendor
CVE Published:
15 December 2003

What is CVE-2003-0972?

A vulnerability exists in GNU Screen, specifically related to an integer signedness error in ansi.c, allowing local users to exploit this flaw through the use of a significant number of semicolon characters in escape sequences. This exploitation can result in a buffer overflow, enabling the execution of arbitrary code within the affected versions. Potentially harmful impacts can occur to systems running GNU Screen 4.0.1 and earlier, as well as 3.9.15 and earlier versions.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.