24 matches found
EUVD-2006-3784
Malware in sbrugna...
EUVD-2006-3782
Malware in sbrugna...
EUVD-2006-3783
Malware in sbrugna...
EUVD-2006-3785
Malware in sbrugna...
EUVD-2006-3786
Malware in sbrugna...
Gentoo Security Advisory GLSA 200702-10 (ufo2000)
The remote host is missing updates announced in advisory GLSA 200702-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200702-10 (ufo2000)
The remote host is missing updates announced in advisory GLSA 200702-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-200702-10 : UFO2000: Multiple vulnerabilities
"The remote host is affected by the vulnerability described in GLSA-200702-10 UFO2000: Multiple vulnerabilities Five vulnerabilities were found: a buffer overflow in recvaddunit %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
UFO2000: Multiple vulnerabilities
Background UFO2000 is a multi-player, turn-based tactical simulation. Description Five vulnerabilities were found: a buffer overflow in recvaddunit; a problem with improperly trusting user-supplied string information in decodestringmap; several issues with array manipulation via various commands...
CVE-2006-3788
Multiple buffer overflows in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code via 1 a long unit name in Net::recvaddunit,; 2 large values to Net::recvrules, Net::recvselectunit, Net::recvoptions, and Net::recvunitdata; and 3 a large mapdata GEODATA structure in...
CVE-2006-3790
The decodestringmap function in servertransport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service daemon termination via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read...
CVE-2006-3789
Multiple array index errors in the 1 recvrules, 2 recvselectunit, 3 recvoptions, and 4 recvunitdata functions in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code and cause a denial of service opponent crash via certain packet data that specifies an out-of-bounds...
CVE-2006-3792
SQL injection vulnerability in ServerClientUfo::recvpacket in serverprotocol.cpp in UFO2000 svn 1057 allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving the packet.cstr function...
Multiple vulnerabilities in UFO2000 svn 1057
Luigi Auriemma Application: UFO2000 http://ufo2000.sourceforge.net Versions: = SVN 1057 Platforms: Windows, nix, BSD, Mac and more Bugs: A buffer-overflow in recvaddunit B invalid memory access in decodestringmap C possible code execution through arrays D SQL injection E mapdata global buffer...
Multiple UFO2000 game security vulnerabilities
Memory corruptions, buffer overflows, SQL injections, etc...
CVE-2006-3788
CVE-2006-3788 affects UFO2000: Multiple buffer overflows in multiplay.cpp (UFO2000 svn 1057) allow remote code execution via crafted network data in Net::recv_add_unit, Net::recv_rules/recv_select_unit/recv_options/recv_unit_data, and a large GEODATA map structure in Net::recv_map_data. The issue...
CVE-2006-3790
The decodestringmap function in servertransport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service daemon termination via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read...
CVE-2006-3790
CVE-2006-3790 affects UFO2000. The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 can be manipulated via a mismatched keysize/valsize relative to the packet size, causing a buffer over-read and resulting in a denial of service (daemon termination). The vulnerability is doc...
CVE-2006-3791
The CVE-2006-3791 vulnerability affects UFO2000: the decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) by sending a large keysize or valsize, which crashes when the resize function cannot allocate memor...
CVE-2006-3792
UFO2000 is affected by CVE-2006-3792, with a SQL injection in ServerClientUfo::recv_packet (server_protocol.cpp) that allows remote execution of arbitrary SQL commands via unspecified vectors in svn 1057. Public advisories (Gentoo GLSA 200702-10) confirm multiple vulnerabilities including this SQ...