Description
Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolling."
References (4)
Core 4
Core References
Patch, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2116
Patch, Vendor Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2002/dsa-113
Patch, Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2002-020.html
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/8222.php
Scores
EPSS
0.0019
EPSS Percentile
41.0%
Details
CWE
CWE-120
Status
published
Products (19)
debian/debian_linux
2.2 (6 CPE variants)
freebsd/freebsd
3.1
freebsd/freebsd
3.2
freebsd/freebsd
3.3
freebsd/freebsd
3.4
freebsd/freebsd
3.5
freebsd/freebsd
3.5.1
freebsd/freebsd
4.0
freebsd/freebsd
4.1
freebsd/freebsd
4.1.1
... and 9 more
Published
Mar 08, 2002
Tracked Since
Feb 18, 2026