CVE-2006-1539
EPSS 0.86%
Description
Multiple buffer overflows in the checkscores function in scores.c in tetris-bsd in bsd-games before 2.17-r1 in Gentoo Linux might allow local users with games group membership to gain privileges by modifying tetris-bsd.scores to contain crafted executable content, which is executed when another user launches tetris-bsd.
How to fix CVE-2006-1539
To remediate CVE-2006-1539, upgrade the affected package to a fixed version below.
- Debian/bsdgames—upgrade to 2.17-6 or later
Is CVE-2006-1539 being exploited?
Low — EPSS is 0.9%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2.17-6