CVE-2003-0359

EPSS 0.05%

Published: 7/24/2003Modified: 4/28/2026

Description

nethack 3.4.0 and earlier installs certain setgid binaries with insecure permissions, which allows local users to gain privileges by replacing the original binaries with malicious code.

Affected packages (2)

Debian/nethackfrom 0, < 3.4.1-1
Debian/slashemfrom 0, < 0.0.6E4F8-6

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0359