Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2408

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2408
Last Modified 20 Sep 2011 12:00:00
Published 16 May 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2408

Summary

Multiple buffer overflows in Raydium before SVN revision 310 allow remote attackers to execute arbitrary code via a large packet when logged via (1) the raydium_log function in log.c or (2) the raydium_console_line_add function in console.c, possibly from a long player name.

Vulnerable Systems

Application

  • Raydium Svn Revision 283

  • Raydium Svn Revision 284

  • Raydium Svn Revision 285

  • Raydium Svn Revision 286

  • Raydium Svn Revision 287

  • Raydium Svn Revision 288

  • Raydium Svn Revision 289

  • Raydium Svn Revision 290

  • Raydium Svn Revision 291

  • Raydium Svn Revision 292

  • Raydium Svn Revision 293

  • Raydium Svn Revision 294

  • Raydium Svn Revision 295

  • Raydium Svn Revision 296

  • Raydium Svn Revision 297

  • Raydium Svn Revision 298

  • Raydium Svn Revision 299

  • Raydium Svn Revision 300

  • Raydium Svn Revision 301

  • Raydium Svn Revision 302

  • Raydium Svn Revision 303

  • Raydium Svn Revision 304

  • Raydium Svn Revision 305

  • Raydium Svn Revision 306

  • Raydium Svn Revision 307

  • Raydium Svn Revision 308

  • Raydium Svn Revision 309


References

XF - raydium-raydiumlog-bo(26510)

VUPEN - ADV-2006-1808

BID - 17986

BUGTRAQ - 20060512 Multiple vulnerabilities in Raydium rev 309

SREASON - 900

SECUNIA - 20097

CONFIRM - http://raydium.org/svn.php

MISC - http://aluigi.altervista.org/adv/raydiumx-adv.txt


Last Updated: 27 May 2016 10:42:27