Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2547

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2009-2547
Last Modified 21 Jul 2009 12:00:00
Published 20 Jul 2009 04:00:11
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-2547

Summary

Integer underflow in Armed Assault (aka ArmA) 1.14 and earlier, and 1.16 beta, and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service (crash) via a VoIP over Network (VON) packet to port 2305 with a negative packet_size value, which triggers a buffer over-read.

Vulnerable Systems

Application

  • Bistudio Arma 1.14

  • Bistudio Arma 1.16 Beta

  • Bistudio Arma 2 1.02


References

XF - armed-assault-von-dos(51820)

VUPEN - ADV-2009-1951

SECUNIA - 35900

MISC - http://aluigi.altervista.org/adv/armadioz-adv.txt


Last Updated: 27 May 2016 10:50:57