Published: 06/03/2006 Updated: 20/07/2017

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 645

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P

Buffer overflow in socket/request.c in CrossFire prior to 1.9.0, when oldsocketmode is enabled, allows remote malicious users to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
crossfire crossfire 1.8.0
crossfire crossfire 1.7.0

/* by Luigi Auriemma */ #include <stdioh> #include <stdlibh> #include <stringh> #include <timeh> #ifdef WIN32 #include <winsockh> /* Header file used for manage errors in Windows It support socket and errno too (this header replace the previous sock_errXh) */ #include <stringh> #include & ...

NVD-CWE-Other http://aluigi.altervista.org/poc/crossfirebof.zip http://cvs.sourceforge.net/viewcvs.py/crossfire/crossfire/socket/request.c?r1=1.80&r2=1.81 http://secunia.com/advisories/19044 http://www.securityfocus.com/bid/16883 http://www.osvdb.org/23549 http://www.debian.org/security/2006/dsa-1001 http://secunia.com/advisories/19194 http://www.gentoo.org/security/en/glsa/glsa-200604-11.xml http://secunia.com/advisories/19785 http://www.vupen.com/english/advisories/2006/0760 https://exchange.xforce.ibmcloud.com/vulnerabilities/24932 https://nvd.nist.gov https://www.exploit-db.com/exploits/1535/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-1010

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect