Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0290

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0290
Last Modified 05 Sep 2008 04:38:02
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0290

Summary

Buffer overflow in Purge Jihad 2.0.1 and earlier allows remote game servers to execute arbitrary code via an information packet that contains large (1) battle type and (2) map name fields.

Vulnerable Systems

Application

  • Freeform Interactive Purge 1.4.7

  • Freeform Interactive Purge Jihad 2.0.1


References

XF - purge-battletype-map-bo(15216)

BID - 9671

CONFIRM - http://purge.worthplaying.com/phpbb/viewtopic.php?t=1167

BUGTRAQ - 20040216 Broadcast client buffer-overflow in Purge Jihad <= 2.0.1


Last Updated: 27 May 2016 10:38:32