PT-2005-3054 · Raven · Soldier Of Fortune Ii

Published

2005-07-01

Updated

2016-10-18

CVE-2005-2115

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Soldier of Fortune II versions 1.02x through 1.03

Description: The issue allows remote attackers to cause a denial of service, resulting in a server crash. This is achieved by sending a large ID value in the ignore command, which is used as an array index and causes an out-of-bounds operation.

Recommendations: For Soldier of Fortune II versions 1.02x through 1.03, as a temporary workaround, consider restricting the use of the ignore command until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2115

Affected Products

Soldier Of Fortune Ii

PT-2005-3054 · Raven · Soldier Of Fortune Ii

CVE-2005-2115

Related Identifiers

Affected Products

References · 5