Lucene search
K

9 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Rigs of Rods 0.33d Long Vehicle Name Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit this issue to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/11/22 12:0 a.m.35 views

Rigs of Rods超长车辆名称远程缓冲区溢出漏洞

BUGTRAQ ID: 26502 Rigs of Rods(也被称为RoR)是一款卡车、汽车、飞机等驾驶游戏模拟器。 RoR在处理超长车辆名字字段时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞导致拒绝服务。 当玩家加入到服务器时,如果在发送的MSG2USEVEHICLE消息中包含有超长车辆名称的话,就可能在全局dbuffer缓冲区中触发溢出。 在queueMessage中的,当接收到MSG2USEVEHICLE消息时,首先在车辆名称中拷贝dbuffer,然后将昵称连接到dbuffer,这就允许攻击者用最多255个字节覆盖这个缓冲区。但由于这个溢出的性质,只可能导致拒绝服务。...

6.8AI score
Exploits0
NVD
NVD
added 2007/11/20 7:46 p.m.11 views

CVE-2007-6041

Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...

7.5CVSS8AI score0.06326EPSS
Exploits1References7
Prion
Prion
added 2007/11/20 7:46 p.m.13 views

Buffer overflow

Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...

7.5CVSS8.7AI score0.06326EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2007/11/20 7:0 p.m.44 views

CVE-2007-6041

CVE-2007-6041 describes a buffer overflow in the RoR server’s Sequencer::queueMessage (sequencer.cpp) that is triggered by a MSG2_USE_VEHICLE message containing a nickname followed by a vehicle name, where the combined length overflows a buffer. Affected software is Rigs of Rods (RoR) prior to 0....

7.5CVSS8AI score0.06326EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2007/11/20 7:0 p.m.19 views

CVE-2007-6041

Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...

8AI score0.06326EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2007/11/20 12:0 a.m.3 views

PT-2007-6957 · Rigs Of Rods Team · Rigs Of Rods

Name of the Vulnerable Software and Affected Versions: Rigs of Rods RoR versions prior to 0.33d SP1 Description: The issue is related to a buffer overflow in the Sequencer::queueMessage function, which can be triggered by sending a nickname and then a vehicle name in a MSG2 USE VEHICLE message wi...

7.5CVSS7.3AI score0.06326EPSS
Exploits1References9
Exploit DB
Exploit DB
added 2007/11/19 12:0 a.m.24 views

Rigs of Rods 0.33d - 'Vehicle Name' Buffer Overflow

source: https://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit this issue to execute arbitrary code within the...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/11/19 12:0 a.m.17 views

Rigs of Rods 0.33d - Vehicle Name Buffer Overflow

Rigs of Rods 0.33d - Vehicle Name Buffer Overflow source: https://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploi...

0.9AI score
Exploits0
Rows per page
Query Builder