Published: 23/11/2004 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The client and server of Chaser 1.50 and previous versions allow remote malicious users to cause a denial of service (crash via exception) via a UDP packet with a length field that is greater than the actual data length, which causes Chaser to read unexpected memory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cauldron chaser client 1.5
cauldron chaser server 1.4.9
cauldron chaser server 1.5

source: wwwsecurityfocuscom/bid/9567/info Chaser has been reported to be prone to a denial of service vulnerability This issue is caused by a lack of input validation of a size parameter specified in UDP network communication packets The process will attempt to read the amount of data specified by the packet, without regard to the amoun ...

source: wwwsecurityfocuscom/bid/9567/info Chaser has been reported to be prone to a denial of service vulnerability This issue is caused by a lack of input validation of a size parameter specified in UDP network communication packets The process will attempt to read the amount of data specified by the packet, without regard to the amou ...

NVD-CWE-Other http://www.securityfocus.com/bid/9567 http://marc.info/?l=bugtraq&m=107584109420084&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15031 https://nvd.nist.gov https://www.exploit-db.com/exploits/23641/

CVE-2004-0247

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect