Vulnerabilities > CVE-2003-0767 - Denial-Of-Service vulnerability in Gamespy products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

gamespy

exploit available

NVD

Published: 2003-09-17

Updated: 2016-10-18

Summary

Buffer overflow in RogerWilco graphical server 1.4.1.6 and earlier, dedicated server 0.32a and earlier for Windows, and 0.27 and earlier for Linux and BSD, allows remote attackers to cause a denial of service and execute arbitrary code via a client request with a large length value.

Vulnerable Configurations

Part	Description	Count
Application	Gamespy Gamespy Roger Wilco Dedicated Server 0.26 Gamespy Roger Wilco Dedicated Server 0.27 Gamespy Roger Wilco Dedicated Server 0.28 Gamespy Roger Wilco Dedicated Server 0.29 Gamespy Roger Wilco Dedicated Server 0.30A Gamespy Roger Wilco Graphical Server 1.4.1.1 Gamespy Roger Wilco Graphical Server 1.4.1.2 Gamespy Roger Wilco Graphical Server 1.4.1.3 Gamespy Roger Wilco Graphical Server 1.4.1.4 Gamespy Roger Wilco Graphical Server 1.4.1.5 Gamespy Roger Wilco Graphical Server 1.4.1.6	11

Exploit-Db

description	Roger Wilco 1.x Client Data Buffer Overflow Exploit. CVE-2003-0767. Remote exploits for multiple platform
id	EDB-ID:95
last seen	2016-01-31
modified	2003-09-10
published	2003-09-10
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/95/
title	Roger Wilco 1.x Client Data Buffer Overflow Exploit

References

http://marc.info/?l=bugtraq&m=106304902323758&w=2