CVE-2009-4846

Sažetak

Multiple buffer overflows in Deliantra Server before 2.82 allow remote attackers to execute arbitrary code via vectors related to (1) the command_gsay function in server/c_party.C and (2) the book implementation.

Reference

http://cvs.schmorp.de/deliantra/server/Changes?pathrev=rel-2_82
http://cvs.schmorp.de/deliantra/server/server/c_party.C?r1=1.29&r2=1.30
http://secunia.com/advisories/37317
http://www.osvdb.org/59878
http://www.osvdb.org/59879
http://www.vupen.com/english/advisories/2009/3176
https://exchange.xforce.ibmcloud.com/vulnerabilities/54205
https://exchange.xforce.ibmcloud.com/vulnerabilities/54206

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

17-08-2017 - 01:31

Objavljeno

07-05-2010 - 18:30