CVE-2024-58251 Information

Description

In netstat in BusyBox through 1.37.0 local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence leading to a denial of service (terminal locked up) when netstat is used by a victim.

Reference

http://www.openwall.com/lists/oss-security/2025/04/23/6 https://bugs.busybox.net/show_bug.cgi?id=15922 https://www.busybox.net https://www.busybox.net/downloads/