Buffer overflow in pl_main.c in sail in BSDgames before 2.17-7 allows local users to execute arbitrary code via a long player name that is used in a scanf function call.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| joey_hess | bsdgames | 2.9 |
| joey_hess | bsdgames | 2.17 |
| joey_hess | bsdgames | 2.12 |
| joey_hess | bsdgames | 2.13 |
| joey_hess | bsdgames | 2.14 |