Vulnerabilities > CVE-2007-4446 - Multiple vulnerability in Toribash

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
toribash
exploit available

Summary

Format string vulnerability in the server in Toribash 2.71 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the NICK command (client nickname) when entering a game.

Vulnerable Configurations

Part Description Count
Application
Toribash
1

Exploit-Db

descriptionToribash 2.x Multiple Vulnerabilities. CVE-2007-4446. Remote exploits for multiple platform
idEDB-ID:30508
last seen2016-02-03
modified2007-08-18
published2007-08-18
reporterLuigi Auriemma
sourcehttps://www.exploit-db.com/download/30508/
titleToribash 2.x - Multiple Vulnerabilities