The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height.
Max CVSS
5.0
EPSS Score
3.76%
Published
2009-03-12
Updated
2017-08-17
The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.
Max CVSS
4.3
EPSS Score
1.97%
Published
2009-03-12
Updated
2009-03-21
Unspecified vulnerability in Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows attackers to cause a denial of service (hang) via a "faulty add-on" and possibly execute other commands via unknown vectors related to the turn_cmd option.
Max CVSS
7.5
EPSS Score
0.67%
Published
2007-12-01
Updated
2017-07-29
The multiplayer engine in Wesnoth 1.2.x before 1.2.7 and 1.3.x before 1.3.9 allows remote servers to cause a denial of service (crash) via a long message with multibyte characters that can produce an invalid UTF-8 string after it is truncated, which triggers an uncaught exception, involving the truncate_message function in server/server.cpp. NOTE: this issue affects both clients and servers.
Max CVSS
7.8
EPSS Score
2.08%
Published
2007-10-11
Updated
2017-07-29
4 vulnerabilities found