PT-2004-3255 · Digital Reality · Desert Rats Vs. Afrika Korps+1

Luigi Auriemma

Published

2004-12-31

Updated

2017-07-11

CVE-2004-2361

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Digital Reality game engine versions 1.0 through 1.0.7 Desert Rats vs. Afrika Korps version 1.0

Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a chat message with a large size. This triggers an out-of-bounds read.

Recommendations: For Digital Reality game engine versions 1.0 through 1.0.7, consider restricting the size of incoming chat messages to prevent the out-of-bounds read. For Desert Rats vs. Afrika Korps version 1.0, restrict the size of incoming chat messages to minimize the risk of a denial of service.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-2361

Affected Products

Desert Rats Vs. Afrika Korps

Digital Reality Game Engine

PT-2004-3255 · Digital Reality · Desert Rats Vs. Afrika Korps+1

CVE-2004-2361

Related Identifiers

Affected Products

References · 7