Debian Security Advisory DSA 400-1 (omega-rpg) Network Vulnerability

Summary

The remote host is missing an update to omega-rpg announced via advisory DSA 400-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20400-1

Insight

Steve Kemp discovered a buffer overflow in the commandline and environment variable handling of omega-rpg, a text-based rogue-style game of dungeon exploration, which could lead a local attacker to gain unauthorised access to the group games. For the stable distribution (woody) this problem has been fixed in version 0.90-pa9-7woody1. For the unstable distribution (sid) this problem has been fixed in version 0.90-pa9-11. We recommend that you upgrade your omega-rpg package.

Severity

Classification

CVE CVE-2003-0932

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1006-1 (wzdftpd)
Debian Security Advisory DSA 109-1 (faqomatic)
Debian Security Advisory DSA 004-1 (nano)
Debian Security Advisory DSA 025-1 (openssh)
Debian Security Advisory DSA 1048-1 (asterisk)

Take action and discover your vulnerabilities