ID OSVDB:14567 Type osvdb Reporter Luigi Auriemma(aluigi@autistici.org) Modified 2005-03-04T07:39:21
Description
Vulnerability Description
A remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.
Solution Description
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Short Description
A remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.
{"type": "osvdb", "published": "2005-03-04T07:39:21", "href": "https://vulners.com/osvdb/OSVDB:14567", "hashmap": [{"key": "affectedSoftware", "hash": "60c4198b9636feb17de951b8af5a8f29"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "267e6a14151698ddae4f704b97896264"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "8da1c0d470db4baa83effe8305aceb71"}, {"key": "href", "hash": "d94fe8776df7337142f82c7b91057fe7"}, {"key": "modified", "hash": "3282cb7951c97a5fccadf763fbbb5333"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "3282cb7951c97a5fccadf763fbbb5333"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "2155716932a7db74a347d98b88a5de75"}, {"key": "title", "hash": "19d8235ab2de31b026270feddab53fb5"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "bulletinFamily": "software", "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/", "score": 7.5}, "viewCount": 0, "history": [], "edition": 1, "objectVersion": "1.2", "reporter": "Luigi Auriemma(aluigi@autistici.org)", "title": "Chaser Large Nickname Remote Overflow", "affectedSoftware": [{"operator": "eq", "version": "1.47", "name": "Chaser"}, {"operator": "eq", "version": "1.50", "name": "Chaser"}, {"operator": "eq", "version": "1.49", "name": "Chaser"}], "enchantments": {"vulnersScore": 5.0}, "references": [], "id": "OSVDB:14567", "hash": "ca4eeffd2bef0bf26f3fc67fe167fcd51bb2184d38aa69d82d2fcfa3a9419687", "lastseen": "2017-04-28T13:20:10", "cvelist": ["CVE-2005-0693"], "modified": "2005-03-04T07:39:21", "description": "## Vulnerability Description\nA remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nA remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.\n## References:\nVendor URL: http://www.chasergame.com\n[Secunia Advisory ID:14506](https://secuniaresearch.flexerasoftware.com/advisories/14506/)\nOther Advisory URL: http://aluigi.altervista.org/adv/chasercool-adv.txt\n[CVE-2005-0693](https://vulners.com/cve/CVE-2005-0693)\n"}
{"result": {"cve": [{"id": "CVE-2005-0693", "type": "cve", "title": "CVE-2005-0693", "description": "Buffer overflow in JoWood Chaser 1.50 and earlier allows remote attackers to cause a denial of service (client or server crash) and execute arbitrary code via a long nickname.", "published": "2005-03-07T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0693", "cvelist": ["CVE-2005-0693"], "lastseen": "2016-09-03T05:11:59"}]}}
