CVE-2007-4379

Name of the Vulnerable Software and Affected Versions Babo Violent 2 versions 2.08.00 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved through several methods, including sending a value greater than 0x27 for specific data IDs, such as 0xca, 0xcb, 0xcc, 0xce, 0xcf, or 0xd0, using a nonexistent map name, or by sending a UDP packet that specifies a large data size.

Recommendations For Babo Violent 2 versions 2.08.00 and earlier, as a temporary workaround, consider restricting the input values for the affected data IDs to prevent values greater than 0x27 from being processed, and validate map names to ensure they exist before attempting to use them. Additionally, restrict UDP packet sizes to prevent large data sizes from being specified.