← Back

CVE-2000-0963

nvd nist
Published: Dec 19, 2000Modified: Apr 16, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS.

Affected (13)

Products: Immunix: Immunix · Freebsd: Freebsd · Redhat: Linux · +1 more
Show all products
Immunix: Immunix · Freebsd: Freebsd · Redhat: Linux · Gnu: Ncurses
Immunix
1 product
Immunix
Freebsd
1 product
Freebsd
Redhat
1 product
Linux
Gnu
1 product
Ncurses
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Immunix
Immunix
Version 6.2
Immunix
Version 7.0_beta
Configuration B
10 vulnerable
Vulnerable SoftwareAffected Versions
Freebsd
Freebsd
Version 3.4
Freebsd
Version 3.5.1
Freebsd
Version 4.0
Freebsd
Version 4.1.1
Freebsd
Version 4.1.1 stable
Freebsd
Version 4.1
Redhat
Linux
Version 6.2
Linux
Version 6.2
Linux
Version 6.2
Linux
Version 7.0
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Ncurses
Before 5.6

References (8)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
Source: cve@mitre.org
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory

Timeline

No history available yet.