CVE-2004-2361 : Digital Reality game engine, as used in Haegemonia 1.0 through 1.0.7 and Desert Rats vs. Afrika Korps 1.0, allows remote

Digital Reality game engine, as used in Haegemonia 1.0 through 1.0.7 and Desert Rats vs. Afrika Korps 1.0, allows remote attackers to cause a denial of service (crash) via a chat message with a large message size, which triggers an out-of-bounds read.

Published 2004-12-31 05:00:00

Updated 2017-07-11 01:31:50

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2004-2361

Probability of exploitation activity in the next 30 days: 2.57%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 89 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2004-2361

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2004-2361

http://marc.info/?l=bugtraq&m=107764783411414&w=2
http://aluigi.altervista.org/adv/hgmcrash-adv.txt

Exploit;Vendor Advisory
http://www.securityfocus.com/bid/9736

Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15307

Vulnerability Details : CVE-2004-2361

Exploit prediction scoring system (EPSS) score for CVE-2004-2361

CVSS scores for CVE-2004-2361

References for CVE-2004-2361