24 matches found
EUVD-2006-3784
Malware in sbrugna...
EUVD-2006-3786
Malware in sbrugna...
EUVD-2006-3782
Malware in sbrugna...
EUVD-2006-3785
Malware in sbrugna...
EUVD-2006-3783
Malware in sbrugna...
Gentoo Security Advisory GLSA 200702-10 (ufo2000)
The remote host is missing updates announced in advisory GLSA 200702-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200702-10 (ufo2000)
The remote host is missing updates announced in advisory GLSA 200702-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-200702-10 : UFO2000: Multiple vulnerabilities
"The remote host is affected by the vulnerability described in GLSA-200702-10 UFO2000: Multiple vulnerabilities Five vulnerabilities were found: a buffer overflow in recvaddunit %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
UFO2000: Multiple vulnerabilities
Background UFO2000 is a multi-player, turn-based tactical simulation. Description Five vulnerabilities were found: a buffer overflow in recvaddunit; a problem with improperly trusting user-supplied string information in decodestringmap; several issues with array manipulation via various commands...
CVE-2006-3789
Multiple array index errors in the 1 recvrules, 2 recvselectunit, 3 recvoptions, and 4 recvunitdata functions in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code and cause a denial of service opponent crash via certain packet data that specifies an out-of-bounds...
CVE-2006-3788
Multiple buffer overflows in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code via 1 a long unit name in Net::recvaddunit,; 2 large values to Net::recvrules, Net::recvselectunit, Net::recvoptions, and Net::recvunitdata; and 3 a large mapdata GEODATA structure in...
CVE-2006-3792
SQL injection vulnerability in ServerClientUfo::recvpacket in serverprotocol.cpp in UFO2000 svn 1057 allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving the packet.cstr function...
CVE-2006-3790
The decodestringmap function in servertransport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service daemon termination via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read...
Multiple vulnerabilities in UFO2000 svn 1057
Luigi Auriemma Application: UFO2000 http://ufo2000.sourceforge.net Versions: = SVN 1057 Platforms: Windows, nix, BSD, Mac and more Bugs: A buffer-overflow in recvaddunit B invalid memory access in decodestringmap C possible code execution through arrays D SQL injection E mapdata global buffer...
Multiple UFO2000 game security vulnerabilities
Memory corruptions, buffer overflows, SQL injections, etc...
CVE-2006-3792
SQL injection vulnerability in ServerClientUfo::recvpacket in serverprotocol.cpp in UFO2000 svn 1057 allows remote attackers to execute arbitrary SQL commands via unspecified vectors involving the packet.cstr function...
CVE-2006-3790
CVE-2006-3790 affects UFO2000. The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 can be manipulated via a mismatched keysize/valsize relative to the packet size, causing a buffer over-read and resulting in a denial of service (daemon termination). The vulnerability is doc...
CVE-2006-3788
Multiple buffer overflows in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code via 1 a long unit name in Net::recvaddunit,; 2 large values to Net::recvrules, Net::recvselectunit, Net::recvoptions, and Net::recvunitdata; and 3 a large mapdata GEODATA structure in...
CVE-2006-3791
The CVE-2006-3791 vulnerability affects UFO2000: the decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) by sending a large keysize or valsize, which crashes when the resize function cannot allocate memor...
CVE-2006-3792
UFO2000 is affected by CVE-2006-3792, with a SQL injection in ServerClientUfo::recv_packet (server_protocol.cpp) that allows remote execution of arbitrary SQL commands via unspecified vectors in svn 1057. Public advisories (Gentoo GLSA 200702-10) confirm multiple vulnerabilities including this SQ...