CVE-2005-0369 - Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to ca

CVE-2005-0369

Summary

Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to cause a denial of service (application crash) via a packet with a large (1) descriptor ID or (2) claim_id, which exceeds the boundaries of an array.

References

http://marc.info/?l=bugtraq&m=110811699206052&w=2

Vulnerable Configurations

cpe:2.3:a:armagetronad:armagetron_advanced:-:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron_advanced:-:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron_advanced:0.2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron_advanced:0.2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron:-:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron:-:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron:0.2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:armagetronad:armagetron:0.2.6.0:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 09-02-2024 - 03:13)
Impact:
Exploitability:

CWE

CWE-129

CAPEC

Overflow Buffers
Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an adversary. As a consequence, an adversary is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the adversaries' choice.

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bugtraq

20050210 Crashes and socket unreacheable in Armagetron Advanced 0.2.7.0

Last major update

09-02-2024 - 03:13

Published

02-05-2005 - 04:00

Last modified

09-02-2024 - 03:13