Lucene search

[email protected]CVE-2004-0290

HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0290

2004-11-2305:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0290

buffer overflow

purge jihad

remote code execution

information security

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.4%

JSON

Buffer overflow in Purge Jihad 2.0.1 and earlier allows remote game servers to execute arbitrary code via an information packet that contains large (1) battle type and (2) map name fields.

CPENameOperatorVersion
freeform_interactive:purge_jihadfreeform interactive purge jihadeq2.0.1
freeform_interactive:purgefreeform interactive purgeeq1.4.7

CPE	Name	Operator	Version
freeform_interactive:purge_jihad	freeform interactive purge jihad	eq	2.0.1
freeform_interactive:purge	freeform interactive purge	eq	1.4.7

References

marc.info/?l=bugtraq&m=107695064204362&w=2

purge.worthplaying.com/phpbb/viewtopic.php?t=1167

www.securityfocus.com/bid/9671

exchange.xforce.ibmcloud.com/vulnerabilities/15216

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.4%

JSON