Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
valve software vulnerabilities and exploits
(subscribe to this query)
6.6
CVSSv3
CVE-2019-14743
In Valve Steam Client for Windows through 2019-08-07, HKLM\SOFTWARE\Wow6432Node\Valve\Steam has explicit "Full control" for the Users group, which allows local users to gain NT AUTHORITY\SYSTEM access.
Valvesoftware Steam Client
1 Article
NA
CVE-2008-7203
Valve Software Half-Life Counter-Strike 1.6 allows remote malicious users to cause a denial of service (crash) via multiple crafted login packets.
Valvesoftware Counter-strike 1.6
1 EDB exploit
NA
CVE-2007-5713
Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow malicious users to execute arbitrary code or cause a denial of service via unspecified input related to geolocation, which triggers an error message from the (1) geoip_code2 or (2)...
Amxmodx Amx Mod X 1.76d
Valve Software Half-life Dedicated Server
NA
CVE-2007-5477
Cross-site scripting (XSS) vulnerability in auth.w in djeyl.net WebMod 0.48 Half-Life Dedicated Server plugin allows remote malicious users to inject arbitrary web script or HTML via the redir parameter.
Valve Software Half-life Dedicated Server
Valve Software Webmod Plugin 0.48
NA
CVE-2006-0734
The SV_CheckForDuplicateNames function in Valve Software Half-Life CSTRIKE Dedicated Server 1.6 and previous versions allows remote authenticated users to cause a denial of service (infinite loop and daemon hang) via a backslash character at the end of a connection string to UDP ...
Valve Software Half-life Cstrike Dedicated Server
1 EDB exploit
NA
CVE-2004-0724
The Half-Life engine before July 7 2004 allows remote malicious users to cause a denial of service (server or client crash) via an empty fragmented packet.
Valve Software Half-life 1.1.0.4
Valve Software Half-life Dedicated Server 3.1.0.5
Valve Software Half-life Dedicated Server 3.1.0.6
Valve Software Half-life Dedicated Server 3.1.1.1e
Valve Software Half-life Dedicated Server 3.1.3
Valve Software Half-life Dedicated Server 4.1.1.1c1
Valve Software Half-life Dedicated Server 4.1.1.1d Beta
Valve Software Half-life 1.1.0.9
Valve Software Half-life 1.1.1.0
Valve Software Half-life Dedicated Server 3.1.1.0
Valve Software Half-life Dedicated Server 3.1.1.1c1
Valve Software Half-life Dedicated Server 4.1.0.7
Valve Software Half-life Dedicated Server 4.1.0.8
Valve Software Half-life 1.1.0.8
Valve Software Half-life Dedicated Server 3.1.0.7
Valve Software Half-life Dedicated Server 3.1.0.8
Valve Software Half-life Dedicated Server 3.1.0.9
Valve Software Half-life Dedicated Server 4.1.0.4
Valve Software Half-life Dedicated Server 4.1.0.6
Valve Software Half-life Dedicated Server 4.1.1.1e
Valve Software Half-life Dedicated Server 3.1
Valve Software Half-life Dedicated Server 3.1.0.4
NA
CVE-2003-1325
The SV_CheckForDuplicateNames function in Valve Software Half-Life CSTRIKE Dedicated Server 1.1.1.0 and previous versions allows remote authenticated users to cause a denial of service (infinite loop and daemon hang) via a certain connection string to UDP port 27015 that represen...
Valve Software Half-life Cstrike Dedicated Server
1 EDB exploit
NA
CVE-2002-0964
Half-Life Server 1.1.1.0 and previous versions allows remote malicious users to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting ...
Valve Software Half-life 1.1.0.4
Valve Software Half-life Dedicated Server
Valve Software Half-life 1.1.0.8
Valve Software Half-life 1.1.0.9
Valve Software Half-life 1.1.1.0
Valve Software Half-life Dedicated Server 3.1.3
1 EDB exploit
NA
CVE-2001-0964
Buffer overflow in client for Half-Life 1.1.0.8 and previous versions allows malicious remote servers to execute arbitrary code via a long console command.
Valve Software Half-life
NA
CVE-2001-0358
Buffer overflows in Sierra Half-Life build 1573 and previous versions allow remote malicious users to execute arbitrary code via (1) a long map command, (2) a long exec command, or (3) long input in a configuration file.
Sierra Half-life
Valve Software Half-life
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »