PT-2005-2775 · Firefly Studios · Stronghold 2

Luigi Auriemma

Published

2005-05-30

Updated

2016-10-18

CVE-2005-1808

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Firefly Studios Stronghold 2 versions 1.2 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in a crash. This is achieved by sending a packet with a large size value for the nickname, which leads to a memory allocation failure and generates an exception.

Recommendations For versions 1.2 and earlier, consider restricting or validating the size of the nickname value in incoming packets to prevent memory allocation failures until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1808

Affected Products

Stronghold 2

PT-2005-2775 · Firefly Studios · Stronghold 2

CVE-2005-1808

Related Identifiers

Affected Products

References · 4