Search...

CVE-2004-2449

2004-12-31T05:00:00

ID CVE-2004-2449
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:31:00

Description

Roger Wilco 1.4.1.6 and earlier or Roger Wilco Base Station 0.30a and earlier allows remote attackers to cause a denial of service (application crash) via a long, malformed UDP datagram.

JSON Vulners Source

Initial Source

{"id": "CVE-2004-2449", "bulletinFamily": "NVD", "title": "CVE-2004-2449", "description": "Roger Wilco 1.4.1.6 and earlier or Roger Wilco Base Station 0.30a and earlier allows remote attackers to cause a denial of service (application crash) via a long, malformed UDP datagram.", "published": "2004-12-31T05:00:00", "modified": "2017-07-11T01:31:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2449", "reporter": "cve@mitre.org", "references": ["http://secunia.com/advisories/11270", "https://exchange.xforce.ibmcloud.com/vulnerabilities/15716", "http://www.securityfocus.com/bid/10022", "http://www.osvdb.org/4833", "http://aluigi.altervista.org/adv/wilco-again-adv.txt", "http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html"], "cvelist": ["CVE-2004-2449"], "type": "cve", "lastseen": "2021-02-02T05:23:01", "edition": 4, "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:4833"]}, {"type": "exploitdb", "idList": ["EDB-ID:23902"]}], "modified": "2021-02-02T05:23:01", "rev": 2}, "score": {"value": 5.5, "vector": "NONE", "modified": "2021-02-02T05:23:01", "rev": 2}, "vulnersScore": 5.5}, "cpe": ["cpe:/a:gamespy:roger_wilco_dedicated_server:0.30a", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.6", "cpe:/a:gamespy:roger_wilco_dedicated_server:0.28", "cpe:/a:gamespy:roger_wilco_dedicated_server:0.29", "cpe:/a:gamespy:roger_wilco_dedicated_server:0.26", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.1", "cpe:/a:gamespy:roger_wilco_dedicated_server:0.27", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.4", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.3", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.2", "cpe:/a:gamespy:roger_wilco_graphical_server:1.4.1.5"], "affectedSoftware": [{"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.5"}, {"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.3"}, {"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.2"}, {"cpeName": "gamespy:roger_wilco_dedicated_server", "name": "gamespy roger wilco dedicated server", "operator": "eq", "version": "0.29"}, {"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.4"}, {"cpeName": "gamespy:roger_wilco_dedicated_server", "name": "gamespy roger wilco dedicated server", "operator": "eq", "version": "0.27"}, {"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.6"}, {"cpeName": "gamespy:roger_wilco_dedicated_server", "name": "gamespy roger wilco dedicated server", "operator": "eq", "version": "0.30a"}, {"cpeName": "gamespy:roger_wilco_dedicated_server", "name": "gamespy roger wilco dedicated server", "operator": "eq", "version": "0.28"}, {"cpeName": "gamespy:roger_wilco_graphical_server", "name": "gamespy roger wilco graphical server", "operator": "eq", "version": "1.4.1.1"}, {"cpeName": "gamespy:roger_wilco_dedicated_server", "name": "gamespy roger wilco dedicated server", "operator": "eq", "version": "0.26"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.30a:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.4:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.2:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.5:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.27:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.28:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.29:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.3:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.6:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.26:*:*:*:*:*:*:*", "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.1:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.30a:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.26:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.28:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.29:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_dedicated_server:0.27:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gamespy:roger_wilco_graphical_server:1.4.1.5:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20040331 RogerWilco: new funny bugs", "refsource": "BUGTRAQ", "tags": ["Exploit"], "url": "http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html"}, {"name": "10022", "refsource": "BID", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/10022"}, {"name": "11270", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/11270"}, {"name": "4833", "refsource": "OSVDB", "tags": [], "url": "http://www.osvdb.org/4833"}, {"name": "http://aluigi.altervista.org/adv/wilco-again-adv.txt", "refsource": "MISC", "tags": ["Exploit"], "url": "http://aluigi.altervista.org/adv/wilco-again-adv.txt"}, {"name": "roger-wilco-udp-dos(15716)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15716"}]}

{"osvdb": [{"lastseen": "2017-04-28T13:19:59", "bulletinFamily": "software", "cvelist": ["CVE-2004-2449"], "edition": 1, "description": "## Vulnerability Description\nRoger Wilco contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends specially crafted malformed UDP packets, and will result in loss of availability for the service.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nRoger Wilco contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends specially crafted malformed UDP packets, and will result in loss of availability for the service.\n## References:\nVendor URL: http://rogerwilco.gamespy.com\n[Secunia Advisory ID:11270](https://secuniaresearch.flexerasoftware.com/advisories/11270/)\n[Related OSVDB ID: 4834](https://vulners.com/osvdb/OSVDB:4834)\nOther Advisory URL: http://aluigi.altervista.org/adv/wilco-again-adv.txt\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html\nISS X-Force ID: 15716\nGeneric Exploit URL: http://aluigi.altervista.org/poc/wilco.zip\n[CVE-2004-2449](https://vulners.com/cve/CVE-2004-2449)\nBugtraq ID: 10022\n", "modified": "2004-04-02T08:09:08", "published": "2004-04-02T08:09:08", "id": "OSVDB:4833", "href": "https://vulners.com/osvdb/OSVDB:4833", "title": "RogerWilco Malformed UDP DoS", "type": "osvdb", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "exploitdb": [{"lastseen": "2016-02-02T22:04:03", "description": "Roger Wilco Server 1.4.1 UDP Datagram Handling Denial Of Service Vulnerability. CVE-2004-2449. Dos exploits for multiple platform", "published": "2004-03-31T00:00:00", "type": "exploitdb", "title": "Roger Wilco Server 1.4.1 UDP Datagram Handling Denial of Service Vulnerability", "bulletinFamily": "exploit", "cvelist": ["CVE-2004-2449"], "modified": "2004-03-31T00:00:00", "id": "EDB-ID:23902", "href": "https://www.exploit-db.com/exploits/23902/", "sourceData": "source: http://www.securityfocus.com/bid/10022/info\r\n\r\nRoger Wilco Server has been reported prone to a remote denial of service vulnerability. The issue is reported to exist due to a flaw when handling malicious UDP payloads that are destined for the vulnerable server.\r\n\r\nA remote attacker may exploit this condition to deny service to legitimate users. \r\n\r\nhttps://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/23902.zip", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/23902/"}]}