Local stackbased overflow found for silly Poker v0.25.5 (advisory + poc exploit)

["demz" <demz () c-code net>]

Local stackbased overflow found in sill Poker v0.25.5
silly Poker contains an $HOME environment variable stack overflow,
this can be exploited very simple to execute arbitrary code with gid=games
privileges.

demz
demz () c-code net

Attachment: c-code-adv002.txt
Description:

Attachment: c-sillyPoker.c
Description: