Lucene search

[email protected]CVE-2007-4445

HistoryAug 21, 2007 - 12:17 a.m.

CVE-2007-4445

2007-08-2100:17:00

[email protected]

web.nvd.nist.gov

image space

rfactor

denial of service

vulnerability

cve-2007-4445

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

High

0.044 Low

EPSS

Percentile

92.5%

JSON

Image Space rFactor 1.250 and earlier allows remote attackers to cause a denial of service (daemon crash) via (1) an ID 0x30 packet, (2) an ID 0x38 packet, and an invalid 13-bit integer in (3) an ID 0x60 packet and (4) an ID 0x68 packet; and a denial of service (UDP port block) via (5) an ID 0x20 packet and (6) an ID 0x28 packet.

Affected configurations

NVD

Node

rfactorrfactorMatch1150

rfactorrfactorMatch1250

CPENameOperatorVersion
rfactor:rfactorrfactoreq1150
rfactor:rfactorrfactoreq1250

CPE	Name	Operator	Version
rfactor:rfactor	rfactor	eq	1150
rfactor:rfactor	rfactor	eq	1250

References

aluigi.org/poc/rfactorx.zip

forum.racesimcentral.com/showthread.php?t=298659

secunia.com/advisories/26526

securityreason.com/securityalert/3037

www.rfactor.net/?page=news_09-26_1255

www.securityfocus.com/archive/1/477023/100/0/threaded

www.securityfocus.com/archive/1/480591/100/200/threaded

www.securityfocus.com/archive/1/480921/100/200/threaded

www.securityfocus.com/bid/25358

exchange.xforce.ibmcloud.com/vulnerabilities/36094

exchange.xforce.ibmcloud.com/vulnerabilities/36095

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

High

0.044 Low

EPSS

Percentile

92.5%

JSON

Related for CVE-2007-4445

prion1 cvelist1 nvd1