Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6041

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6041
Last Modified 07 Mar 2011 10:01:41
Published 20 Nov 2007 02:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6041

Summary

Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods (RoR) before 0.33d SP1 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2_USE_VEHICLE message, in which the combined length triggers the overflow.

Vulnerable Systems

Application

  • Rigs Of Rogs 0.33d


References

SECUNIA - 27729

XF - rigsofrods-queuemessage-bo(38549)

VUPEN - ADV-2007-3938

BID - 26502

CONFIRM - http://forum.rigsofrods.com/index.php?topic=3140.0

MISC - http://aluigi.org/poc/rorbof.zip

MISC - http://aluigi.altervista.org/adv/rorbof-adv.txt


Last Updated: 27 May 2016 10:46:22