The server in Toribash 2.71 and previous versions does not properly handle partially joined clients that are temporarily assigned the ID of -1, which allows remote malicious users to cause a denial of service (daemon crash) via a GRIP command with the ID of -1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
toribash toribash |