DOSBox 0.72 and earlier allows local users to obtain access to the filesystem on the host operating system via the mount command. NOTE: the researcher reports a vendor response stating that this is not a security problem
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dosbox | dosbox | * |
DOSBox 0.74-2 has Incorrect Access Control.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 9.0 |
| dosbox | dosbox | 0.74-2 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 8.0 |
A buffer overflow in DOSBox 0.74-2 allows attackers to execute arbitrary code.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-119,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| debian | debian_linux | 9.0 |
| fedoraproject | fedora | 30 |
| dosbox | dosbox | 0.74-2 |
| debian | debian_linux | 8.0 |