Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1354

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1354
Last Modified 05 Sep 2008 12:00:00
Published 31 Dec 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1354

Summary

Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed UDP query packets, as demonstrated using Battlefield 1942.

Vulnerable Systems

Application

  • Gamespy3d Gamespy 3d 2.62


References

XF - battlefield-udp-query-dos(11084)

BID - 6636

MISC - http://www.securiteam.com/securitynews/5EP0O0K8UO.html

MISC - http://www.pivx.com/kristovich/adv/mk001/

BUGTRAQ - 20030122 PivX Multi-Vendor Game Server dDoS Advisory


Last Updated: 27 May 2016 10:38:20