Vulnerabilities > CVE-2004-0074 - Local Buffer Overrun vulnerability in Michael Bischoff Xsok 1.02
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Xsok v1.02 "-xsokdir" local buffer overflow game exploit. CVE-2004-0074. Local exploit for linux platform id EDB-ID:140 last seen 2016-01-31 modified 2004-01-02 published 2004-01-02 reporter c0wboy source https://www.exploit-db.com/download/140/ title Xsok 1.02 - "-xsokdir" Local Buffer Overflow Game Exploit description XSOK 1.0 2 LANG Environment Variable Local Buffer Overrun Vulnerability. CVE-2004-0074. Local exploit for linux platform id EDB-ID:23510 last seen 2016-02-02 modified 2003-12-30 published 2003-12-30 reporter N2n-Hacker source https://www.exploit-db.com/download/23510/ title XSOK 1.0 2 LANG Environment Variable Local Buffer Overrun Vulnerability
Nessus
NASL family | Debian Local Security Checks |
NASL id | DEBIAN_DSA-405.NASL |
description | Steve Kemp discovered a problem in xsok, a single player strategy game for X11, related to the Sokoban game, which leads a user to execute arbitrary commands under the GID of games. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 15242 |
published | 2004-09-29 |
reporter | This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/15242 |
title | Debian DSA-405-1 : xsok - missing privilege release |
code |
|