Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4445

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4445
Last Modified 05 Sep 2008 05:28:15
Published 20 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4445

Summary

Image Space rFactor 1.250 and earlier allows remote attackers to cause a denial of service (daemon crash) via (1) an ID 0x30 packet, (2) an ID 0x38 packet, and an invalid 13-bit integer in (3) an ID 0x60 packet and (4) an ID 0x68 packet; and a denial of service (UDP port block) via (5) an ID 0x20 packet and (6) an ID 0x28 packet.

Vulnerable Systems

Application

  • Rfactor 1150

  • Rfactor 1250


References

BID - 25358

BUGTRAQ - 20070818 Multiple vulnerabilities in rFactor 1.250

SECUNIA - 26526

MISC - http://aluigi.org/poc/rfactorx.zip

XF - rfactor-ids-udp-dos(36095)

XF - rfactor-ids-dos(36094)

BUGTRAQ - 20070927 Re: Multiple vulnerabilities in rFactor 1.250

BUGTRAQ - 20070925 Re: Multiple vulnerabilities in rFactor 1.250

CONFIRM - http://www.rfactor.net/?page=news_09-26_1255

SREASON - 3037

CONFIRM - http://forum.racesimcentral.com/showthread.php?t=298659


Last Updated: 27 May 2016 10:45:52