← CVECheck
HomeVulnerabilities

CVE-2003-0972 — HIGH severity vulnerability (Integer signedness error in ansi.c for GNU screen 4.0.1 and)

Integer signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow.

CVE IDCVE-2003-0972
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2003-12-15
Last modified2026-04-16
DescriptionInteger signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape sequences, which leads to a buffer overflow.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →