aGSM Half-Life Server Response Remote Overflow

2004-08-19T02:05:34
ID OSVDB:9072
Type osvdb
Reporter Dmitriy 'Dimetrius' Baranov()
Modified 2004-08-19T02:05:34

Description

Vulnerability Description

A remote overflow exists in aGSM. The program fails to validate the responses from Half-Life servers resulting in a buffer overflow condition. With a specially crafted request, an attacker can cause an overflow and execute arbitrary code on the system, resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in aGSM. The program fails to validate the responses from Half-Life servers resulting in a buffer overflow condition. With a specially crafted request, an attacker can cause an overflow and execute arbitrary code on the system, resulting in a loss of integrity.

References:

Vendor URL: http://www.agsm.net/ Security Tracker: 1010989 Secunia Advisory ID:12334 ISS X-Force ID: 17046 CVE-2004-2277 Bugtraq ID: 10989