Lucene search

MitreCVE-2007-5369

HistoryOct 11, 2007 - 10:17 a.m.

CVE-2007-5369

2007-10-1110:17:00

CWE-189

mitre

web.nvd.nist.gov

cve-2007-5369

getmagicnumberstring

massive entertainment world in conflict

voip

denial of service

null dereference

daemon crash

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.039

Percentile

92.2%

JSON

The GetMagicNumberString function in Massive Entertainment World in Conflict 1.000 and earlier allows remote attackers to cause a denial of service (NULL dereference and daemon crash) via a string to the VoIP port (52999/tcp) with an invalid value in the third byte.

Affected configurations

Nvd

Node

massive_entertainmentworld_in_conflictMatch1.000

VendorProductVersionCPE
massive_entertainmentworld_in_conflict1.000cpe:2.3:a:massive_entertainment:world_in_conflict:1.000:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
massive_entertainment	world_in_conflict	1.000	cpe:2.3:a:massive_entertainment:world_in_conflict:1.000:::::::*

References

secunia.com/advisories/27157

securityreason.com/securityalert/3214

www.massive.se/Index.asp?nNewsId=1387

www.securityfocus.com/archive/1/481895/100/0/threaded

www.securityfocus.com/bid/25985

www.vupen.com/english/advisories/2007/3448

exchange.xforce.ibmcloud.com/vulnerabilities/37034

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.039

Percentile

92.2%

JSON

Related for CVE-2007-5369