Soldier of Fortune II Broadcast Overflow DoS

2004-11-23T07:21:51
ID OSVDB:12113
Type osvdb
Reporter Luigi Auriemma(aluigi@autistici.org)
Modified 2004-11-23T07:21:51

Description

Vulnerability Description

Soldier of Fortune II contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted packet to the server or a reply to a client causing a buffer overflow, and will result in loss of availability for the Soldier of Fortune II game.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Soldier of Fortune II contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially crafted packet to the server or a reply to a client causing a buffer overflow, and will result in loss of availability for the Soldier of Fortune II game.

References:

Vendor URL: http://sof2.ravensoft.com/ Security Tracker: 1012316 Secunia Advisory ID:13289 Other Advisory URL: http://aluigi.altervista.org/adv/sof2boom-adv.txt Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1051.html Generic Exploit URL: http://aluigi.altervista.org/poc/sof2boom.zip CVE-2004-1542