The client_cmd function in Empire 4.3.2 and previous versions allows remote malicious users to cause a denial of service (application crash) by causing long text strings to be appended to the player->client buffer, which causes an invalid memory access.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
empire server empire server 4.3.0 |
||
empire server empire server 4.3.2 |