CVE-2007-4508 - Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 a

CVE-2007-4508

Summary

Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.

References

Vulnerable Configurations

cpe:2.3:a:rebellion:rogue_trooper:*:*:*:*:*:*:*:*
cpe:2.3:a:rebellion:rogue_trooper:*:*:*:*:*:*:*:*
cpe:2.3:a:rival_interactive:prism:*:*:*:*:*:*:*:*
cpe:2.3:a:rival_interactive:prism:*:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 15-10-2018 - 21:35)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	25411
bugtraq	20070822 Buffer-overflow in the Asura engine
misc	http://aluigi.altervista.org/adv/asurabof-adv.txt
osvdb	39799
secunia	24023 26571
sreason	3053
vupen	ADV-2007-2955 ADV-2007-2956
xf	prism-guard-asura-engine-bo(36221)

Last major update

15-10-2018 - 21:35

Published

23-08-2007 - 19:17

Last modified

15-10-2018 - 21:35