9 matches found
Rigs of Rods 0.33d Long Vehicle Name Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit this issue to...
Rigs of Rods超长车辆名称远程缓冲区溢出漏洞
BUGTRAQ ID: 26502 Rigs of Rods(也被称为RoR)是一款卡车、汽车、飞机等驾驶游戏模拟器。 RoR在处理超长车辆名字字段时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞导致拒绝服务。 当玩家加入到服务器时,如果在发送的MSG2USEVEHICLE消息中包含有超长车辆名称的话,就可能在全局dbuffer缓冲区中触发溢出。 在queueMessage中的,当接收到MSG2USEVEHICLE消息时,首先在车辆名称中拷贝dbuffer,然后将昵称连接到dbuffer,这就允许攻击者用最多255个字节覆盖这个缓冲区。但由于这个溢出的性质,只可能导致拒绝服务。...
CVE-2007-6041
Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...
Buffer overflow
Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...
CVE-2007-6041
CVE-2007-6041 describes a buffer overflow in the RoR server’s Sequencer::queueMessage (sequencer.cpp) that is triggered by a MSG2_USE_VEHICLE message containing a nickname followed by a vehicle name, where the combined length overflows a buffer. Affected software is Rigs of Rods (RoR) prior to 0....
CVE-2007-6041
Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods RoR before 0.33d SP1 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2USEVEHICLE message,...
PT-2007-6957 · Rigs Of Rods Team · Rigs Of Rods
Name of the Vulnerable Software and Affected Versions: Rigs of Rods RoR versions prior to 0.33d SP1 Description: The issue is related to a buffer overflow in the Sequencer::queueMessage function, which can be triggered by sending a nickname and then a vehicle name in a MSG2 USE VEHICLE message wi...
Rigs of Rods 0.33d - 'Vehicle Name' Buffer Overflow
source: https://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploit this issue to execute arbitrary code within the...
Rigs of Rods 0.33d - Vehicle Name Buffer Overflow
Rigs of Rods 0.33d - Vehicle Name Buffer Overflow source: https://www.securityfocus.com/bid/26502/info Rigs of Rods is prone to a remote buffer-overflow because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker could exploi...