Vulnerabilities > CVE-2004-0158 - Environment Variable Buffer Overflow Vulnerabilites in LGames LBreakout2
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in lbreakout2 allows local users to gain 'games' group privileges via a large HOME environment variable to (1) editor.c, (2) theme.c, (3) manager.c, (4) config.c, (5) game.c, (6) levels.c, or (7) main.c.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 8 |
Exploit-Db
| description | LGames LBreakout2 2.2.2 Multiple Environment Variable Buffer Overflow Vulnerabilites. CVE-2004-0158. Local exploit for linux platform |
| id | EDB-ID:23738 |
| last seen | 2016-02-02 |
| modified | 2004-02-21 |
| published | 2004-02-21 |
| reporter | Li0n7 |
| source | https://www.exploit-db.com/download/23738/ |
| title | LGames LBreakout2 2.2.2 - Multiple Environment Variable Buffer Overflow Vulnerabilites |
Nessus
NASL family Debian Local Security Checks NASL id DEBIAN_DSA-445.NASL description Ulf Harnhammar from the Debian Security Audit Project discovered a vulnerability in lbreakout2, a game, where proper bounds checking was not performed on environment variables. This bug could be exploited by a local attacker to gain the privileges of group last seen 2020-06-01 modified 2020-06-02 plugin id 15282 published 2004-09-29 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15282 title Debian DSA-445-1 : lbreakout2 - buffer overflow NASL family FreeBSD Local Security Checks NASL id FREEBSD_LBREAKOUT2_222_1.NASL description The following package needs to be updated: lbreakout2 last seen 2016-09-26 modified 2004-07-06 plugin id 12558 published 2004-07-06 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=12558 title FreeBSD : lbreakout2 vulnerability in environment variable handling (87) NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_AD4F6CA4672011D89FB5000A95BC6FAE.NASL description Ulf Harnhammar discovered an exploitable vulnerability in lbreakout2 last seen 2020-06-01 modified 2020-06-02 plugin id 37516 published 2009-04-23 reporter This script is Copyright (C) 2009-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/37516 title FreeBSD : lbreakout2 vulnerability in environment variable handling (ad4f6ca4-6720-11d8-9fb5-000a95bc6fae)