CVE-2002-1192
rogue on NetBSD <= 1.6 and FreeBSD 4.6 - Local Privilege Escalation via Malformed Game Save File
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-1192. PoCs published by [email protected].
AI-analyzed exploit summary The provided code is a patch for a cross-site scripting (XSS) vulnerability in the 'myng' software, not an exploit for CVE-2002-1192. It shows changes to PHP files to mitigate XSS by applying htmlspecialchars to user-controlled input.
Description
Multiple buffer overflows in rogue on NetBSD 1.6 and earlier, FreeBSD 4.6, and possibly other operating systems, allows local users to gain "games" group privileges via malformed entries in a game save file.
Exploits (1)
The provided code is a patch for a cross-site scripting (XSS) vulnerability in the 'myng' software, not an exploit for CVE-2002-1192. It shows changes to PHP files to mitigate XSS by applying htmlspecialchars to user-controlled input.