Vulnerabilities > CVE-2002-0964 - Denial Of Service vulnerability in Valve Software Half-Life and Half-Life Dedicated Server

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
valve-software
exploit available

Summary

Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting until the original responses have timed out.

Exploit-Db

descriptionHalf-Life Server 1.1/3.1 New Player Flood Denial Of Service Vulnerability. CVE-2002-0964. Dos exploits for multiple platform
idEDB-ID:21572
last seen2016-02-02
modified2002-06-20
published2002-06-20
reporterAuriemma Luigi
sourcehttps://www.exploit-db.com/download/21572/
titleHalf-Life Server 1.1/3.1 New Player Flood Denial of Service Vulnerability