Sacred Player Logging Remote Overflow

2005-03-28T10:36:45
ID OSVDB:15154
Type osvdb
Reporter Luigi Auriemma(aluigi@autistici.org)
Modified 2005-03-28T10:36:45

Description

Vulnerability Description

A remote overflow exists in Sacred. Sacred has a flaw in the players logging function resulting in a buffer overflow. With a specially crafted request, an attacker can execute malicious code resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in Sacred. Sacred has a flaw in the players logging function resulting in a buffer overflow. With a specially crafted request, an attacker can execute malicious code resulting in a loss of integrity.

References:

Vendor URL: http://www.sacred-game.com Security Tracker: 1013574 Secunia Advisory ID:14769 Related OSVDB ID: 15092 Related OSVDB ID: 15153 Other Advisory URL: http://aluigi.altervista.org/adv/tincat2bof-adv.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0468.html CVE-2005-0906 Bugtraq ID: 12912