VULHUB ™

It has been reported that Linley Henzell Dungeon Crawl may be prone to a local buffer overflow vulnerability that may allow an attacker to ultimately execute arbitrary code in the context of the affected application. The software copies various environment variables into a fixed size buffer without proper bounds checking. An attacker may pass excessive data to a vulnerable application via an affected environment variable. Crawl 4.0.0 beta 26 and prior may be prone to this issue.

It has been reported that Linley Henzell Dungeon Crawl may be prone to a local buffer overflow vulnerability that may allow an attacker to ultimately execute arbitrary code in the context of the affected application. The software copies various environment variables into a fixed size buffer without proper bounds checking. An attacker may pass excessive data to a vulnerable application via an affected environment variable. Crawl 4.0.0 beta 26 and prior may be prone to this issue.