dpmdpm2

2 exploits Active since Dec 2019

CVE-2020-5254 NOMISEC LOW NO CODE

NetHack 3.6.1-3.6.6 - Memory Corruption via hilite_status Option

In NetHack before 3.6.6, some out-of-bound values for the hilite_status option can be exploited. NetHack 3.6.6 resolves this issue.

2 stars

CVSS 3.9

View Code

CVE-2019-19905 NOMISEC CRITICAL WORKING POC

NetHack 3.6.0-3.6.3 - Buffer Overflow via Long Configuration File Lines

NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability when reading very long lines from configuration files. This affects systems that have NetHack installed suid/sgid, and shared systems that allow users to upload their own configuration files.

CVSS 9.8

View Code