6 results (0.013 seconds)

CVSS: 6.5EPSS: 2%CPEs: 7EXPL: 1

It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command. Es posible causar una condición DoS causando que el servidor se bloquee en alien-arena versión 7.33, al proporcionar varios parámetros no válidos al comando de descarga. • https://access.redhat.com/security/cve/cve-2010-3439 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=575621 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3439 https://security-tracker.debian.org/tracker/CVE-2010-3439 • CWE-20: Improper Input Validation •

CVSS: 5.0EPSS: 5%CPEs: 1EXPL: 1

Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (client disconnect) by sending a client_connect command in a forged packet from the server to a client. NOTE: client IP addresses are available via product-specific queries. Alien Arena 2007 6.10 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (desconexión de cliente) al enviar un comando client_connect en un paquete falsificado del servidor al cliente. NOTA: las direcciones IP cliente están disponibles mediante consultas específicas por producto. • http://aluigi.altervista.org/adv/aa2k7x-adv.txt http://archives.neohapsis.com/archives/fulldisclosure/2007-09/0049.html http://osvdb.org/40508 http://secunia.com/advisories/26819 http://securityreason.com/securityalert/3105 http://www.quakesrc.org/forums/viewtopic.php?t=6843&start=1 http://www.securityfocus.com/archive/1/478628/100/0/threaded http://www.securityfocus.com/bid/25559 http://www.vupen.com/english/advisories/2007/3169 https://exchange.xforce.ibmcloud.com/vulnerabilities • CWE-20: Improper Input Validation •

CVSS: 7.5EPSS: 15%CPEs: 1EXPL: 2

Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (daemon crash) via format string specifiers in a nickname. Vulnerabilidad de formato de cadena en la función safe_bprintf en acesrc/acebot_cmds.c de Alien Arena 2007 6.10 y versiones anteriores permite a atacantes remotos provocar una denegación de servicio (caída de demonio) mediante especificadores de cadena en un nombre de pila (nickname). • https://www.exploit-db.com/exploits/30566 http://aluigi.altervista.org/adv/aa2k7x-adv.txt http://archives.neohapsis.com/archives/fulldisclosure/2007-09/0049.html http://osvdb.org/40507 http://secunia.com/advisories/26819 http://securityreason.com/securityalert/3105 http://www.quakesrc.org/forums/viewtopic.php?t=6843&start=1 http://www.securityfocus.com/archive/1/478628/100/0/threaded http://www.securityfocus.com/bid/25559 http://www.vupen.com/english/advisories/2007/3169 h • CWE-134: Use of Externally-Controlled Format String •

CVSS: 6.5EPSS: 2%CPEs: 1EXPL: 2

Format string vulnerability in the safe_cprintf function in acebot_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code via unspecified vectors when the server sends crafted messages to the clients. • https://www.exploit-db.com/exploits/1564 http://aluigi.altervista.org/adv/aa2k6x-adv.txt http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0147.html http://secunia.com/advisories/19144 http://www.osvdb.org/23747 http://www.securityfocus.com/archive/1/426984/100/0/threaded http://www.securityfocus.com/bid/17028 http://www.vupen.com/english/advisories/2006/0882 https://exchange.xforce.ibmcloud.com/vulnerabilities/25199 •

CVSS: 6.5EPSS: 4%CPEs: 1EXPL: 2

Stack-based buffer overflow in the Cmd_Say_f function in g_cmds.c in Alien Arena 2006 Gold Edition 5.00 allows remote attackers (possibly authenticated) to execute arbitrary code by sending a long message to the server. • https://www.exploit-db.com/exploits/1564 http://aluigi.altervista.org/adv/aa2k6x-adv.txt http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0147.html http://secunia.com/advisories/19144 http://www.osvdb.org/23748 http://www.securityfocus.com/archive/1/426984/100/0/threaded http://www.securityfocus.com/bid/17028 http://www.vupen.com/english/advisories/2006/0882 https://exchange.xforce.ibmcloud.com/vulnerabilities/25200 •