Vulnerabilities > CVE-2003-0783 - Buffer Overflow vulnerability in Yongguang Zhang Hztty 2.0

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
yongguang-zhang
nessus
exploit available

Summary

Multiple buffer overflows in hztty 2.0 allow local users to gain root privileges.

Vulnerable Configurations

Part Description Count
Application
Yongguang_Zhang
1

Exploit-Db

descriptionhztty 2.0 Local root exploit (Tested on Red Hat 9.0). CVE-2003-0783. Local exploit for linux platform
idEDB-ID:104
last seen2016-01-31
modified2003-09-21
published2003-09-21
reporterc0wboy
sourcehttps://www.exploit-db.com/download/104/
titlehztty 2.0 - Local Root Exploit Red Hat 9.0

Nessus

NASL familyDebian Local Security Checks
NASL idDEBIAN_DSA-385.NASL
descriptionJens Steube reported a pair of buffer overflow vulnerabilities in hztty, a program to translate Chinese character encodings in a terminal session. These vulnerabilities could be exploited by a local attacker to gain root privileges on a system where hztty is installed. Additionally, hztty had been incorrectly installed setuid root, when it only requires the privileges of group utmp. This has also been corrected in this update.
last seen2020-06-01
modified2020-06-02
plugin id15222
published2004-09-29
reporterThis script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/15222
titleDebian DSA-385-1 : hztty - buffer overflows