Lucene search

K
cve[email protected]CVE-2008-6712
HistoryApr 10, 2009 - 10:00 p.m.

CVE-2008-6712

2009-04-1022:00:00
web.nvd.nist.gov
27
crysis
http
xml-rpc
denial of service
cve-2008-6712
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.117 Low

EPSS

Percentile

95.3%

The HTTP/XML-RPC service in Crysis 1.21 (game version 1.1.1.6156) and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request, which triggers a NULL pointer dereference.

Affected configurations

NVD
Node
eacrysisRange1.21
OR
eacrysisMatch1.1
OR
eacrysisMatch1.2

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.117 Low

EPSS

Percentile

95.3%

Related for CVE-2008-6712