Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2537

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2537
Last Modified 07 Mar 2011 09:36:28
Published 22 May 2006 07:10:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2537

Summary

Multiple format string vulnerabilities in (a) OpenBOR 2.0046 and earlier, (b) Beats of Rage (BOR) 1.0029 and earlier, and (c) Horizontal Shooter BOR (HOR) 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by the (1) music identifier in data/scenes/intro.txt, which is not properly handled in the update function, and (2) background identifier in data/easy/1aeasy.txt, which is not properly handled in the shutdown function.

Vulnerable Systems

Application

  • Horizontal Shooter Bor 2.0000

  • Openbor 2.0046

  • Senile Team Beats Of Rage 1.0029


References

VUPEN - ADV-2006-1903

VUPEN - ADV-2006-1902

VUPEN - ADV-2006-1901

SECUNIA - 20181

SECUNIA - 20174

SECUNIA - 20173

MISC - http://aluigi.altervista.org/adv/borfs-adv.txt

XF - bor-mod-file-format-string(26582)

BID - 18088

OSVDB - 25687


Last Updated: 27 May 2016 10:42:39