Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4531

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4531
Last Modified 05 Sep 2008 05:28:27
Published 24 Aug 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4531

Summary

Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a client denial of service (crash) via (1) a long string to the file transfer port or (2) a long chat message, or (3) a server denial of service (continuous beep and slowdown) via a string containing many 0x07 or other control characters to the file transfer port.

Vulnerable Systems

Application

  • Michal Marcinkowski Soldat Dedicated Server 2.6.2

  • Michal Marcinkowski Soldat Game Server 1.4.2


References

BID - 25426

MISC - http://aluigi.org/poc/soldatdos.zip

MISC - http://aluigi.altervista.org/adv/soldatdos-adv.txt

XF - soldat-server-ftp-dos(36231)

XF - soldat-message-dos(36230)

BUGTRAQ - 20070823 Multiple denial of service in Soldat 1.4.2/2.6.2

SECUNIA - 26564


Last Updated: 27 May 2016 10:45:53