Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5713

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-5713
Last Modified 29 Oct 2012 11:00:04
Published 30 Oct 2007 03:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5713

Summary

Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow attackers to execute arbitrary code or cause a denial of service via unspecified input related to geolocation, which triggers an error message from the (1) geoip_code2 or (2) geoip_code3 function, leading to a buffer overflow.

Vulnerable Systems

Application

  • Amxmodx Amx Mod X 1.76d

  • Valve Software Half-life Dedicated Server


References

BID - 26218

SECUNIA - 27411

CONFIRM - http://wiki.alliedmods.net/AMX_Mod_X_1.8.0_Changes

CONFIRM - http://bugs.alliedmods.net/?do=details&task_id=519

OSVDB - 41980


Last Updated: 27 May 2016 10:47:14