PT-2007-5629 · Nabi Studios · Toribash

Publicado

2007-08-21

Atualizado

2018-10-15

CVE-2007-4448

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Toribash versions 2.71 and earlier

Description The issue arises from the server's improper handling of partially joined clients that are temporarily assigned the ID of -1. This allows remote attackers to cause a denial of service, resulting in a daemon crash, by sending a GRIP command with the ID of -1.

Recommendations For Toribash versions 2.71 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-4448

Produtos afetados

Toribash

PT-2007-5629 · Nabi Studios · Toribash

CVE-2007-4448

Identificadores relacionados

Produtos afetados

Referências · 7