Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6703

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-6703
Last Modified 03 Jan 2013 12:00:00
Published 10 Apr 2009 06:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6703

Summary

Stack-based buffer overflow in the IPureServer::_Recieve function in S.T.A.L.K.E.R.: Shadow of Chernobyl 1.0006 and earlier allows remote attackers to execute arbitrary code via a compressed 0x39 packet, which is decompressed by the NET_Compressor::Decompress function.

Vulnerable Systems

Application

  • Stalker-game S.t.a.l.k.e.r.%3a Shadow Of Chernobyl 1.0006


References

XF - stalker-multipacketreceiver-bo(43454)

BID - 29997

BUGTRAQ - 20080628 Multiple vulnerabilities in S.T.A.L.K.E.R. 1.0006

SECUNIA - 30891

OSVDB - 46626

MISC - http://aluigi.altervista.org/adv/stalker39x-adv.txt


Last Updated: 27 May 2016 11:01:32