CVE-2020-5253
3.9LOWNetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0.
Published: 3/10/2020Updated: 11/21/2024
Description
NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0.
AI AnalysisPowered by AI
Affected Products
nethacknethack
References
- https://github.com/NetHack/NetHack/commits/612755bfb5c412079795c68ba392df5d93874ed8PatchThird Party Advisory
- https://github.com/NetHack/NetHack/security/advisories/GHSA-2c7p-3fj4-223mThird Party Advisory
- https://github.com/NetHack/NetHack/commits/612755bfb5c412079795c68ba392df5d93874ed8PatchThird Party Advisory
- https://github.com/NetHack/NetHack/security/advisories/GHSA-2c7p-3fj4-223mThird Party Advisory