ID CVE-2004-0290
Summary Buffer overflow in Purge Jihad 2.0.1 and earlier allows remote game servers to execute arbitrary code via an information packet that contains large (1) battle type and (2) map name fields.
References
Vulnerable Configurations
  • cpe:2.3:a:freeform_interactive:purge:1.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:freeform_interactive:purge:1.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:freeform_interactive:purge_jihad:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:freeform_interactive:purge_jihad:2.0.1:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 11-07-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 9671
bugtraq 20040216 Broadcast client buffer-overflow in Purge Jihad <= 2.0.1
confirm http://purge.worthplaying.com/phpbb/viewtopic.php?t=1167
xf purge-battletype-map-bo(15216)
Last major update 11-07-2017 - 01:30
Published 23-11-2004 - 05:00
Last modified 11-07-2017 - 01:30
Back to Top