Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4508

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4508
Last Modified 07 Mar 2011 09:58:41
Published 23 Aug 2007 03:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4508

Summary

Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.

Vulnerable Systems

Application

  • Rebellion Rogue Trooper 1.0

  • Rival Interactive Prism 1.1.1.0


References

VUPEN - ADV-2007-2956

VUPEN - ADV-2007-2955

BID - 25411

BUGTRAQ - 20070822 Buffer-overflow in the Asura engine

OSVDB - 39799

XF - prism-guard-asura-engine-bo(36221)

SREASON - 3053

SECUNIA - 26571

SECUNIA - 24023

MISC - http://aluigi.altervista.org/adv/asurabof-adv.txt


Last Updated: 27 May 2016 10:45:53