Mandrake Linux Security Advisory : ncurses (MDKSA-2001:052)

High Nessus Plugin ID 61914


The remote Mandrake Linux host is missing one or more security updates.


An overflowable buffer in the part of the ncurses library that handles cursor movement existed in versions of ncurses prior to 5.2. Attackers could force a privileged application to use their own termcap file containing a special terminal entry which would trigger the overflow, allowing them to execute arbitrary code with the privileges of the exploited binary. This vulnerability would only manifest in setuid applications that use ncurses for cursor movement.


Update the affected ncurses, ncurses-devel and / or ncurses-extraterms packages.

Plugin Details

Severity: High

ID: 61914

File Name: mandrake_MDKSA-2001-052.nasl

Version: $Revision: 1.3 $

Type: local

Published: 2012/09/06

Modified: 2013/05/31

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:ncurses, p-cpe:/a:mandriva:linux:ncurses-devel, p-cpe:/a:mandriva:linux:ncurses-extraterms, cpe:/o:mandrakesoft:mandrake_linux:7.1, cpe:/o:mandrakesoft:mandrake_linux:7.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2001/05/25

Reference Information

MDKSA: 2001:052