Lucene search
HistoryMay 20, 2015 - 6:59 p.m.
CVE-2015-4016
valve
steam
client detection protocol
denial of service
process crash
cve-2015-4016
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
The client detection protocol in Valve Steam allows remote attackers to cause a denial of service (process crash) via a crafted response to a broadcast packet.
Affected configurations
Node
valvesoftwaresteam_clientRange<2015-05-13
| CPE | Name | Operator | Version |
|---|---|---|---|
| valvesoftware:steam_client | valvesoftware steam client | lt | 2015-05-13 |
Related
zdi
zdi
Valve Steam Client Detection Denial of Service Vulnerability
2015-05-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-4016
2015-05-20 00:00:00
prion
prion
Design/Logic Flaw
2015-05-20 18:59:00
nvd
nvd
CVE-2015-4016
2015-05-20 18:59:08
cvelist
cvelist
CVE-2015-4016
2015-05-20 18:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.012 Low
EPSS
Percentile
85.5%
Related for CVE-2015-4016