Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2705

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-2705
Last Modified 05 Sep 2008 12:00:00
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2705

Summary

Unspecified vulnerability in Player vs. Player Gaming Network (PvPGN) before 1.6.4 allows remote attackers to obtain attributes of arbitrary accounts, including the password hash, via certain statsreq packets.

Vulnerable Systems

Application

  • Pvpgn 1.6.0

  • Pvpgn 1.6.1

  • Pvpgn 1.6.2

  • Pvpgn 1.6.3


References

XF - pvpgn-statsreq-info-disclosure(17094)

BID - 11035

OSVDB - 9144

SECTRACK - 1011050

SECUNIA - 12360

CONFIRM - http://forums.pvpgn.org/index.php/topic,2655.0.html


Last Updated: 27 May 2016 10:39:35