CVE-2019-7629
published 2019-02-18CVE-2019-7629: Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by…
PriorityP260critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
5.38%
91.6th percentile
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tintin | < tintin++ 2.01.5-2 (bookworm) | tintin++ 2.01.5-2 (bookworm) |
| tintin_+_+_project | tintin | — | — |
| tintin_+_+_project | wintin | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploitation attempts by monitoring for abnormally long messages sent to TinTin++/WinTin++ clients, targeting the strip_vt102_codes function which processes VT102 terminal escape codes. ↗
- →Flag processes running TinTin++ or WinTin++ version 2.01.6; the vulnerable function is strip_vt102_codes and exploitation is triggered remotely via a long message to the client. ↗
- ·The Debian security tracker lists the scope as 'local', which may indicate exploitation requires local network access or a local MUD server context, despite the NVD description stating 'remote attackers'. ↗
- ·Fixed version in Debian packages is 2.01.5-2 (a patched downstream package), while upstream fix is in version 2.01.7. Ensure version checks account for both upstream and downstream versioning schemes. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gj67-j733-78w3: Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2
ghsa_unreviewed·2022-05-13
CVE-2019-7629 [CRITICAL] CWE-787 GHSA-gj67-j733-78w3: Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
OSV
CVE-2019-7629: Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2
osv·2019-02-18·CVSS 9.8
CVE-2019-7629 [CRITICAL] CVE-2019-7629: Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
Debian
CVE-2019-7629: tintin++ - Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6...
vendor_debian·2019·CVSS 9.8
CVE-2019-7629 [CRITICAL] CVE-2019-7629: tintin++ - Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6...
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
Scope: local
bookworm: resolved (fixed in 2.01.5-2)
bullseye: resolved (fixed in 2.01.5-2)
forky: resolved (fixed in 2.01.5-2)
sid: resolved (fixed in 2.01.5-2)
trixie: resolved (fixed in 2.01.5-2)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes
bugzilla·2019-02-19·CVSS 9.8
CVE-2019-7629 [CRITICAL] CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes
CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes
Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.
References:
https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505 https://tintin.sourceforge.io/news.php https://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/
Discussion:
Created tintin tracking bugs for this issue:
Affects: fedora-all [bug 1678688]
---
The update was already waiting in updates-testing (and is now in stable). I didn't edit it to reference these bugs after pushing it. I'm going to close this now.
Bugzilla
CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes [fedora-all]
bugzilla·2019-02-19·CVSS 9.8
CVE-2019-7629 [CRITICAL] CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes [fedora-all]
CVE-2019-7629 tintin: stack-based buffer overflow in function strip_vt102_codes [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple sup
https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505https://tintin.sourceforge.io/news.phphttps://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/https://tintin.sourceforge.io/forum/viewtopic.php?f=1&t=2584&sid=31b77bb001faea9269bf224280960e29#p10505https://tintin.sourceforge.io/news.phphttps://trustfoundry.net/cve-2019-7629-rce-in-an-open-source-mud-client/
2019-02-18
Published