Vulnerabilities > CVE-2004-1855 - Unspecified vulnerability in Mythic Entertainment Dark AGE of Camelot

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
mythic-entertainment
exploit available

Summary

Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack.

Exploit-Db

descriptionMythic Entertainment Dark Age of Camelot 1.6x Encryption Key Signing Vulnerability. CVE-2004-1855. Remote exploits for multiple platform
idEDB-ID:23873
last seen2016-02-02
modified2004-03-23
published2004-03-23
reporterTodd Chapman
sourcehttps://www.exploit-db.com/download/23873/
titleMythic Entertainment Dark Age of Camelot 1.6x Encryption Key Signing Vulnerability