CVE-2019-19905

CRITICAL

NetHack 3.6.0-3.6.3 - Buffer Overflow via Long Configuration File Lines

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-19905. PoCs published by dpmdpm2.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2019-19905, which targets a buffer overflow vulnerability in NetHack. The code generates a malicious `.nethackrc` file with shellcode to execute `/bin/sh`, demonstrating remote code execution (RCE).

Description

NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability when reading very long lines from configuration files. This affects systems that have NetHack installed suid/sgid, and shared systems that allow users to upload their own configuration files.

Exploits (1)

nomisec WORKING POC

by dpmdpm2 · poc

https://github.com/dpmdpm2/CVE-2019-19905

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2019-19905, which targets a buffer overflow vulnerability in NetHack. The code generates a malicious `.nethackrc` file with shellcode to execute `/bin/sh`, demonstrating remote code execution (RCE).

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NetHack (versions affected by CVE-2019-19905)

No auth needed

Prerequisites: Ability to deliver the malicious `.nethackrc` file to the target system · Target system must execute NetHack with the malicious configuration

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →