Vulnerabilities > CVE-2007-4446 - Unspecified vulnerability in Toribash
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN toribash
exploit available
Summary
Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command (client nickname) when entering a game.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Toribash 2.x Multiple Vulnerabilities. CVE-2007-4446. Remote exploits for multiple platform |
| id | EDB-ID:30508 |
| last seen | 2016-02-03 |
| modified | 2007-08-18 |
| published | 2007-08-18 |
| reporter | Luigi Auriemma |
| source | https://www.exploit-db.com/download/30508/ |
| title | Toribash 2.x - Multiple Vulnerabilities |
References
- http://aluigi.org/poc/toribashish.zip
- http://aluigi.org/poc/toribashish.zip
- http://secunia.com/advisories/26507
- http://secunia.com/advisories/26507
- http://securityreason.com/securityalert/3033
- http://securityreason.com/securityalert/3033
- http://www.securityfocus.com/archive/1/477025/100/0/threaded
- http://www.securityfocus.com/archive/1/477025/100/0/threaded
- http://www.securityfocus.com/bid/25359
- http://www.securityfocus.com/bid/25359