Lucene search
K

5 matches found

seebug.org
seebug.org
added 2007/03/05 12:0 a.m.18 views

Netrek Vanilla Server EVENTLOG格式串处理漏洞

Netrek Vanilla Server是一个开源软件包,可为Netrek客户端提供多玩家战斗模拟服务。 Netrek Vanilla Server在特定配置情况下存在格式串处理漏洞,远程攻击者可能利用此漏洞控制服务器。 如果在etc/sysdef文件中EVENTLOG=1的话(默认EVENTLOG=0),服务器在处理消息时就可能出现格式串错误。远程攻击者可以通过向服务器发送恶意消息导致拒绝服务或执行任意指令。 Netrek Vanilla Server 2.12 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.netrek.org/...

7.1AI score
Exploits0
Prion
Prion
added 2007/03/03 8:19 p.m.12 views

Format string

Format string vulnerability in the newwarning function in ntserv/warning.c for Netrek Vanilla Server 2.12.0, when EVENTLOG is enabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in the message handling...

9.3CVSS8.3AI score0.06457EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2007/03/03 8:19 p.m.14 views

CVE-2007-1251

Format string vulnerability in the newwarning function in ntserv/warning.c for Netrek Vanilla Server 2.12.0, when EVENTLOG is enabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in the message handling...

9.3CVSS7.8AI score0.06457EPSS
Exploits1References7
Cvelist
Cvelist
added 2007/03/03 8:0 p.m.19 views

CVE-2007-1251

Format string vulnerability in the newwarning function in ntserv/warning.c for Netrek Vanilla Server 2.12.0, when EVENTLOG is enabled, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string specifiers in the message handling...

7.8AI score0.06457EPSS
Exploits1References7
CVE
CVE
added 2007/03/03 8:0 p.m.41 views

CVE-2007-1251

Netrek Vanilla Server 2.12.0 is affected by a format string vulnerability in ntserv/warning.c (new_warning) when EVENTLOG is enabled. The issue allows remote attackers to crash the server or potentially execute arbitrary code via format string specifiers in message handling. The available sources...

9.3CVSS7.8AI score0.06457EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder