Lucene search
HistoryJul 20, 2009 - 8:00 p.m.
CVE-2009-2547
cve-2009-2547
armed assault
denial of service
voip
network security
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.019 Low
EPSS
Percentile
88.5%
Integer underflow in Armed Assault (aka ArmA) 1.14 and earlier, and 1.16 beta, and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service (crash) via a VoIP over Network (VON) packet to port 2305 with a negative packet_size value, which triggers a buffer over-read.
Affected configurations
Node
bistudioarmaRange≤1.16_beta
ORbistudioarmaMatch1.14
ORbistudioarma_2Range≤1.02
| CPE | Name | Operator | Version |
|---|---|---|---|
| bistudio:arma | bistudio arma | le | 1.16_beta |
| bistudio:arma | bistudio arma | eq | 1.14 |
| bistudio:arma_2 | bistudio arma 2 | le | 1.02 |
Related
nvd
nvd
CVE-2009-2547
2009-07-20 20:00:11
prion
prion
Integer overflow
2009-07-20 20:00:00
cvelist
cvelist
CVE-2009-2547
2009-07-20 19:25:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
High
0.019 Low
EPSS
Percentile
88.5%
Related for CVE-2009-2547