Vulnerabilities > CVE-2005-1643 - Denial-Of-Service vulnerability in Zoidcom

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

jorg-ruppel

NVD

Published: 2005-05-17

Updated: 2017-07-11

Summary

The ZCom_BitStream::Deserialize function in Zoidcom 1.0 beta 4 and earlier allows remote attackers to cause a denial of service via a crafted UDP packet with a large size value, which causes a memory allocation error or an out-of-bounds read.

Vulnerable Configurations

Part	Description	Count
Application	Jorg_Ruppel Jorg Ruppel Zoidcom 1.0_Beta_2 Jorg Ruppel Zoidcom 1.0_Beta_3 Jorg Ruppel Zoidcom 1.0_Beta_4	3

References

http://aluigi.altervista.org/adv/zoidboom-adv.txt
http://archives.neohapsis.com/archives/bugtraq/2005-05/0107.html
http://securitytracker.com/id?1013939
http://www.osvdb.org/16495
http://www.zoidcom.com/download/changelog.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20511