PT-2004-3255 · Digital Reality · Desert Rats Vs. Afrika Korps+1

Luigi Auriemma

Publicado

2004-12-31

Atualizado

2017-07-11

CVE-2004-2361

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Digital Reality game engine versions 1.0 through 1.0.7 Desert Rats vs. Afrika Korps version 1.0

Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a chat message with a large size. This triggers an out-of-bounds read.

Recommendations: For Digital Reality game engine versions 1.0 through 1.0.7, consider restricting the size of incoming chat messages to prevent the out-of-bounds read. For Desert Rats vs. Afrika Korps version 1.0, restrict the size of incoming chat messages to minimize the risk of a denial of service.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-2361

Produtos afetados

Desert Rats Vs. Afrika Korps

Digital Reality Game Engine

PT-2004-3255 · Digital Reality · Desert Rats Vs. Afrika Korps+1

CVE-2004-2361

Identificadores relacionados

Produtos afetados

Referências · 7