Vulnerabilities > CVE-2004-0458 - NULL Pointer Dereference vulnerability in multiple products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nicolas-boullis

debian

CWE-476

nessus

NVD

Published: 2004-09-28

Updated: 2024-01-09

Summary

mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a missing argument, which triggers a null pointer dereference.

Vulnerable Configurations

Part	Description	Count
Application	Nicolas_Boullis Nicolas Boullis MAH Jong 1.6 Nicolas Boullis MAH Jong 1.4	2
OS	Debian Debian Debian Linux 3.0	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

Nessus

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-503.NASL
description	A problem has been discovered in mah-jong, a variant of the original Mah-Jong game, that can be utilised to crash the game server after dereferencing a NULL pointer. This bug be exploited by any client that connects to the mah-jong server.
last seen	2020-06-01
modified	2020-06-02
plugin id	15340
published	2004-09-29
reporter	This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/15340
title	Debian DSA-503-1 : mah-jong - missing argument check

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Nessus

References