Vulnerabilities > CVE-2004-0238 - Local Buffer Overflow vulnerability in 0Verkill 0.16

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

0verkill

exploit available

NVD

Published: 2004-11-23

Updated: 2017-07-11

Summary

Multiple buffer overflows in Overkill (0verkill) 0.15pre3 might allow local users to execute arbitrary code in the client via a long HOME environment variable in the (1) load_cfg and (2) save_cfg functions; possibly allow remote attackers to execute arbitrary code via long strings to (3) the send_message function; and, in the server, via (4) the parse_command_line function.

Vulnerable Configurations

Part	Description	Count
Application	0Verkill 0Verkill 0Verkill 0.16	1

Exploit-Db

description	0verkill 0.16 Game Client Multiple Local Buffer Overflow Vulnerabilities. CVE-2004-0238. Local exploit for linux platform
id	EDB-ID:23634
last seen	2016-02-02
modified	2004-02-02
published	2004-02-02
reporter	pi3ki31ny
source	https://www.exploit-db.com/download/23634/
title	0verkill 0.16 - Game Client Multiple Local Buffer Overflow Vulnerabilities

Summary

Vulnerable Configurations

Exploit-Db

References