CVE-2006-7095

Name of the Vulnerable Software and Affected Versions dim3 versions 1.5 and earlier

Description The issue is caused by an integer signedness error in the network receive packet function in socket.c, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large data len value. This value is cast to a signed short, resulting in a buffer overflow.

Recommendations For dim3 versions 1.5 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.