PT-2019-6561 · Cor Entertainment · Alien Arena

Published

2019-11-12

Updated

2019-11-14

CVE-2010-3439

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions alien-arena version 7.33

Description The issue allows for a DoS condition by crashing the server in alien-arena. This can be achieved by supplying various invalid parameters to the download command.

Recommendations For alien-arena version 7.33, consider restricting access to the download command until a patch is available to prevent the server from crashing due to invalid parameters.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2010-3439

Affected Products

Alien Arena

PT-2019-6561 · Cor Entertainment · Alien Arena

CVE-2010-3439

Weakness Enumeration

Related Identifiers

Affected Products

References · 7