Lucene search

[email protected]CVE-2004-1207

HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1207

2005-01-1005:00:00

[email protected]

web.nvd.nist.gov

serious engine

remote attackers

denial of service

udp

join requests

cve-2004-1207

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.082 Low

EPSS

Percentile

94.4%

JSON

The Serious engine, as used in (1) Alpha Black Zero Intrepid Protocol 1.04 and earlier, (2) Nitro family, and (3) Serious Sam Second Encounter 1.07 allows remote attackers to cause a denial of service (server crash) via a large number of UDP join requests that exceeds the maximum player limit, as originally reported for Alpha Black Zero.

Affected configurations

NVD

Node

serioussamseriousengine

CPENameOperatorVersion
serioussam:seriousengineserioussam seriousengineeq*

CPE	Name	Operator	Version
serioussam:seriousengine	serioussam seriousengine	eq	*

References

marc.info/?l=bugtraq&m=109651567308405&w=2

marc.info/?l=bugtraq&m=110180289205605&w=2

secunia.com/advisories/12687

securitytracker.com/id?1011454

www.securityfocus.com/bid/11279

exchange.xforce.ibmcloud.com/vulnerabilities/17545

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.082 Low

EPSS

Percentile

94.4%

JSON

Related for CVE-2004-1207

cvelist1 nvd1