70 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-10648
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
PT-2025-49805
Name of the Vulnerable Software and Affected Versions Robocode version 1.9.3.6 Description A directory traversal issue exists in the CacheCleaner component. The recursivelyDelete method does not properly sanitize file paths, potentially allowing attackers to traverse directories and delete...
PT-2025-49807
Name of the Vulnerable Software and Affected Versions Robocode version 1.9.3.6 Description An integer overflow issue exists in the write method of the Buffer class. The method does not correctly validate the length of data being written, which could allow attackers to cause a buffer overflow and...
PT-2025-49806
Name of the Vulnerable Software and Affected Versions Robocode version 1.9.3.6 Description An insecure temporary file creation issue exists in the AutoExtract component. The createTempFile method does not securely create temporary files, potentially allowing attackers to exploit race conditions...
GHSA-XH22-FW58-56PP Robocode Arbitrary Code Execution
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method...
Robocode Arbitrary Code Execution
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method...
GHSA-Q2XP-75M7-GV52 Improper Input Validation in net.sf.robocode:robocode.host allows for external service interaction
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
Improper Input Validation in net.sf.robocode:robocode.host allows for external service interaction
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
Design/Logic Flaw
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
UBUNTU-CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
CVE-2019-10648
CVE-2019-10648 affects Robocode up to version 1.9.3.5. The root cause is a .openStream call in java.net.URL, which allows remote attackers to trigger external service interaction (DNS) by querying attacker‑controlled DNS zones. This can enable exfiltration or other DNS interactions when a vulnera...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
CVE-2019-10648
Robocode through 1.9.3.5 allows remote attackers to cause external service interaction DNS, as demonstrated by a query for a unique subdomain name within an attacker-controlled DNS zone, because of a .openStream call within java.net.URL...
PT-2019-11963
Name of the Vulnerable Software and Affected Versions Robocode versions prior to 1.9.3.6 Description The issue allows remote attackers to cause external service interaction, specifically DNS queries, by leveraging a .openStream call within java.net.URL. This can be demonstrated by a query for a...
Code injection
Robocode before 1.6.0 allows user-assisted remote attackers to "access the internals of the Robocode game" via unspecified vectors related to the AWT Event Queue...
DEBIAN-CVE-2008-2078
Robocode before 1.6.0 allows user-assisted remote attackers to "access the internals of the Robocode game" via unspecified vectors related to the AWT Event Queue...