Vulnerabilities > CVE-2005-0369 - Improper Validation of Array Index vulnerability in Armagetronad Armagetron and Armagetron Advanced

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

armagetronad

CWE-129

exploit available

NVD

Published: 2005-05-02

Updated: 2024-02-09

Summary

Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to cause a denial of service (application crash) via a packet with a large (1) descriptor ID or (2) claim_id, which exceeds the boundaries of an array.

Vulnerable Configurations

Part	Description	Count
Application	Armagetronad Armagetronad Armagetron Advanced - Armagetronad Armagetron Advanced 0.2.7.0 Armagetronad Armagetron - Armagetronad Armagetron 0.2.6.0	4

Common Weakness Enumeration (CWE)

CWE-129 - Improper Validation of Array Index

Common Attack Pattern Enumeration and Classification (CAPEC)

Overflow Buffers
Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an attacker. As a consequence, an attacker is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the attackers' choice.

Exploit-Db

description	Armagetron Advanced <= 0.2.7.0 Server Crash Exploit. CVE-2005-0369,CVE-2005-0370. Dos exploit for windows platform
id	EDB-ID:810
last seen	2016-01-31
modified	2005-02-10
published	2005-02-10
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/810/
title	Armagetron Advanced <= 0.2.7.0 Server Crash Exploit

References

http://marc.info/?l=bugtraq&m=110811699206052&w=2