PT-2004-1432 · Ratbag · Ratbag Game Engine

Luigi Auriemma

Published

2004-03-18

Updated

2017-07-11

CVE-2004-0278

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Ratbag game engine (affected versions not specified)

Description The issue allows remote attackers to cause a denial of service, specifically CPU consumption, by sending a TCP packet that specifies the length of data to read, followed by a second TCP packet containing less data than specified. This causes the Ratbag game engine to repeatedly check the socket for more data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0278

Affected Products

Ratbag Game Engine

PT-2004-1432 · Ratbag · Ratbag Game Engine

CVE-2004-0278

Related Identifiers

Affected Products

References · 4