CVE-2008-3492

Sažetak

America's Army (aka AA or Army Game Project) 2.8.3.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted UDP packet, probably involving a VoiceIndex value that is outside of the range specified by VOICE_MAX_CHATTERS.

Reference

http://aluigi.altervista.org/adv/armynchia-adv.txt
http://aluigi.org/poc/armynchia.zip
http://secunia.com/advisories/31353
http://www.securityfocus.com/archive/1/495061/100/0/threaded
http://www.securityfocus.com/bid/30519
https://exchange.xforce.ibmcloud.com/vulnerabilities/44152

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

11-10-2018 - 20:48

Objavljeno

06-08-2008 - 18:41