Описание
Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not installed setuid or setgid, perhaps this issue should not be included in CVE.
Ссылки
- ExploitVendor Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gnu:data_display_debugger:3.3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
больше 22 лет назад
Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows loc ...
github
больше 3 лет назад
Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not installed setuid or setgid, perhaps this issue should not be included in CVE.
EPSS
Процентиль: 20%
0.00064
Низкий
7.2 High
CVSS2
Дефекты
NVD-CWE-Other