Vulnerabilities > CVE-2009-2547 - Numeric Errors vulnerability in Bistudio Arma and Arma 2

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

bistudio

CWE-189

NVD

Published: 2009-07-20

Updated: 2017-08-17

Summary

Integer underflow in Armed Assault (aka ArmA) 1.14 and earlier, and 1.16 beta, and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service (crash) via a VoIP over Network (VON) packet to port 2305 with a negative packet_size value, which triggers a buffer over-read.

Vulnerable Configurations

Part	Description	Count
Application	Bistudio Bistudio Arma 1.14 Bistudio Arma * Bistudio Arma 2 *	3

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://aluigi.altervista.org/adv/armadioz-adv.txt
http://secunia.com/advisories/35900
http://www.vupen.com/english/advisories/2009/1951
https://exchange.xforce.ibmcloud.com/vulnerabilities/51820