VULHUB ™

It has been reported that Crafty game program may be prone to a local buffer overflow vulnerability that may allow an attacker to execute arbitrary code in order to gain elevated privileges. The issue presents itself due to insufficient bounds checking performed by 'crafty.bin' on user-supplied data via the command line. This problem could result in the execution of arbitrary code in the context of the vulnerable process, and may result in a local user gaining elevated privileges. Crafty versions 19.3 and prior are reportedly affected by this issue.

It has been reported that Crafty game program may be prone to a local buffer overflow vulnerability that may allow an attacker to execute arbitrary code in order to gain elevated privileges. The issue presents itself due to insufficient bounds checking performed by 'crafty.bin' on user-supplied data via the command line. This problem could result in the execution of arbitrary code in the context of the vulnerable process, and may result in a local user gaining elevated privileges. Crafty versions 19.3 and prior are reportedly affected by this issue.