Lucene search

[email protected]CVE-2009-3637

HistoryJan 13, 2010 - 11:30 a.m.

CVE-2009-3637

2010-01-1311:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-3637

security

buffer overflow

red planet arena

alien arena 7.30

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.124 Low

EPSS

Percentile

95.5%

JSON

Stack-based buffer overflow in the M_AddToServerList function in client/menu.c in Red Planet Arena Alien Arena 7.30 allows remote attackers to execute arbitrary code via a packet with a crafted server description to UDP port 27901 followed by a packet with a long print command.

Affected configurations

NVD

Node

icculusalien_arenaMatch7.30

CPENameOperatorVersion
icculus:alien_arenaicculus alien arenaeq7.30

CPE	Name	Operator	Version
icculus:alien_arena	icculus alien arena	eq	7.30

References

icculus.org/alienarena/changelogs/7.31.txt

secunia.com/advisories/37118

secunia.com/advisories/37256

secunia.com/advisories/37259

www.ngssoftware.com/advisories/very-high-risk-vulnerability-in-alien-arena-730/

www.securityfocus.com/archive/1/507369/100/0/threaded

www.securityfocus.com/bid/36782

www.vupen.com/english/advisories/2009/2997

www.redhat.com/archives/fedora-package-announce/2009-November/msg00179.html

www.redhat.com/archives/fedora-package-announce/2009-November/msg00218.html

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.124 Low

EPSS

Percentile

95.5%

JSON

Related for CVE-2009-3637

openvas6 nessus2 ubuntucve1 cvelist1 nvd1 fedora5 prion1 debiancve1