Lucene search

[email protected]CVE-2004-2705

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2705

2004-12-3105:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2004-2705

player vs. player gaming network

pvpgn

remote attackers

password hash

statsreq packets

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.008 Low

EPSS

Percentile

81.3%

JSON

Unspecified vulnerability in Player vs. Player Gaming Network (PvPGN) before 1.6.4 allows remote attackers to obtain attributes of arbitrary accounts, including the password hash, via certain statsreq packets.

CPENameOperatorVersion
pvpgn:pvpgnpvpgneq1.6.0
pvpgn:pvpgnpvpgneq1.6.2
pvpgn:pvpgnpvpgnle1.6.3
pvpgn:pvpgnpvpgneq1.6.1

CPE	Name	Operator	Version
pvpgn:pvpgn	pvpgn	eq	1.6.0
pvpgn:pvpgn	pvpgn	eq	1.6.2
pvpgn:pvpgn	pvpgn	le	1.6.3
pvpgn:pvpgn	pvpgn	eq	1.6.1

References

forums.pvpgn.org/index.php/topic%2C2655.0.html

secunia.com/advisories/12360

securitytracker.com/id?1011050

www.osvdb.org/9144

www.securityfocus.com/bid/11035

exchange.xforce.ibmcloud.com/vulnerabilities/17094

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.008 Low

EPSS

Percentile

81.3%

JSON

Related for CVE-2004-2705

cvelist1 debiancve1