CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2003-0972
https://notcve.org/view.php?id=CVE-2003-0972
Integer signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow. Error de falta de signo en enteros en ansi.c de GNU screen 4.0.1 y anteriores, y 3.9.15 y anteriores, permite a usuarios locales ejecutar código arbitrario mediante un gran número de caractéres ";" (punto y coma) en secuencias de escape, lo que conduce a un desbordamiento de búfer. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000809 http://groups.yahoo.com/group/gnu-screen/message/3118 http://marc.info/?l=bugtraq&m=106995837813873&w=2 http://secunia.com/advisories/10539 http://www.debian.org/security/2004/dsa-408 http://www.mandriva.com/security/advisories?name=MDKSA-2003:113 •
CVSS: 4.6EPSS: 0%CPEs: 5EXPL: 3CVE-2002-1602 – GNU Screen 3.9.x Braille Module - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1602
Buffer overflow in the Braille module for GNU screen 3.9.11, when HAVE_BRAILLE is defined, allows local users to execute arbitrary code. • https://www.exploit-db.com/exploits/21414 http://www.kb.cert.org/vuls/id/524227 http://www.securityfocus.com/archive/1/268998 http://www.securityfocus.com/bid/4578 https://exchange.xforce.ibmcloud.com/vulnerabilities/8929 •