Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4532

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2007-4532
Last Modified 05 Sep 2008 05:28:27
Published 24 Aug 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4532

Summary

Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a denial of service (client lockout) via a series of UDP join packets from a spoofed IP address, which triggers temporary blacklisting of this IP address.

Vulnerable Systems

Application

  • Michal Marcinkowski Soldat Dedicated Server 2.6.2

  • Michal Marcinkowski Soldat Game Server 1.4.2


References

BID - 25426

MISC - http://aluigi.org/poc/soldatdos.zip

MISC - http://aluigi.altervista.org/adv/soldatdos-adv.txt

XF - soldat-join-dos(36232)

BUGTRAQ - 20070823 Multiple denial of service in Soldat 1.4.2/2.6.2


Last Updated: 27 May 2016 10:45:53