Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0964

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0964
Last Modified 05 Sep 2008 04:29:24
Published 04 Oct 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0964

Summary

Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting until the original responses have timed out.

Vulnerable Systems

Application

  • Valve Software Half-life 1.1.0.4

  • Valve Software Half-life 1.1.0.8

  • Valve Software Half-life 1.1.0.9

  • Valve Software Half-life 1.1.1.0

  • Valve Software Half-life Dedicated Server 3.1

  • Valve Software Half-life Dedicated Server 3.1.3


References

BID - 5076

XF - halflife-mulitple-player-dos(9412)

BUGTRAQ - 20020620 Half-life fake players bug


Last Updated: 27 May 2016 10:37:08