VYPR
Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Jun 16, 2026

CVE-2003-1446

CVE-2003-1446

Description

Buffer overflow in the save_into_file function in save.c for Rogue 5.2-2 allows local users to execute arbitrary code with games group privileges by setting a long HOME environment variable and invoking the save game function with a ~ (tilde).

Affected products

3
  • Rogue/Rogue3 versions
    cpe:2.3:a:rogue:rogue:5.2-2:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:rogue:rogue:5.2-2:*:*:*:*:*:*:*
    • cpe:2.3:a:rogue:rogue:985.0:*:*:*:*:*:*:*
    • (no CPE)range: =5.2-2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.