|
|
CVE Reference: CVE-2006-4006 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4006 |
|
|
Description: The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size when sending a reply, and allows remote attackers to read portions of server memory. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28092 SAID Secunia Advisory: SA21303 Secunia Advisory: SA21985 OSVDB 27648 MISC http://aluigi.org/poc/bcloneboom.zip http://aluigi.altervista.org/adv/bcloneboom-adv.txt DEBIAN http://www.debian.org/security/2006/dsa-1180 BID 19255 |
|
| Return to the previous page. |
