ID OSVDB:14567 Type osvdb Reporter Luigi Auriemma(aluigi@autistici.org) Modified 2005-03-04T07:39:21
Description
Vulnerability Description
A remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.
Solution Description
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Short Description
A remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.
{"type": "osvdb", "published": "2005-03-04T07:39:21", "href": "https://vulners.com/osvdb/OSVDB:14567", "bulletinFamily": "software", "cvss": {"vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/", "score": 7.5}, "viewCount": 0, "edition": 1, "reporter": "Luigi Auriemma(aluigi@autistici.org)", "title": "Chaser Large Nickname Remote Overflow", "affectedSoftware": [{"operator": "eq", "version": "1.47", "name": "Chaser"}, {"operator": "eq", "version": "1.50", "name": "Chaser"}, {"operator": "eq", "version": "1.49", "name": "Chaser"}], "enchantments": {"score": {"value": 5.3, "vector": "NONE", "modified": "2017-04-28T13:20:10", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-0693"]}], "modified": "2017-04-28T13:20:10", "rev": 2}, "vulnersScore": 5.3}, "references": [], "id": "OSVDB:14567", "lastseen": "2017-04-28T13:20:10", "cvelist": ["CVE-2005-0693"], "modified": "2005-03-04T07:39:21", "description": "## Vulnerability Description\nA remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nA remote overflow exists in Chaser. Chaser fails to handles a large nickname of a player resulting in a buffer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.\n## References:\nVendor URL: http://www.chasergame.com\n[Secunia Advisory ID:14506](https://secuniaresearch.flexerasoftware.com/advisories/14506/)\nOther Advisory URL: http://aluigi.altervista.org/adv/chasercool-adv.txt\n[CVE-2005-0693](https://vulners.com/cve/CVE-2005-0693)\n"}
{"cve": [{"lastseen": "2020-10-03T11:34:53", "description": "Buffer overflow in JoWood Chaser 1.50 and earlier allows remote attackers to cause a denial of service (client or server crash) and execute arbitrary code via a long nickname.", "edition": 3, "cvss3": {}, "published": "2005-03-07T05:00:00", "title": "CVE-2005-0693", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": true}, "cvelist": ["CVE-2005-0693"], "modified": "2008-09-05T20:47:00", "cpe": ["cpe:/a:jowood_productions:chaser:1.0", "cpe:/a:jowood_productions:chaser:1.50"], "id": "CVE-2005-0693", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0693", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:a:jowood_productions:chaser:1.50:*:*:*:*:*:*:*", "cpe:2.3:a:jowood_productions:chaser:1.0:*:*:*:*:*:*:*"]}]}
