Vulnerabilities > Crossfire

DATE CVE VULNERABILITY TITLE RISK
2008-11-04 CVE-2008-4908 Link Following vulnerability in Crossfire 1.11.0
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.
3.3
2006-03-15 CVE-2006-1236 Unspecified vulnerability in Crossfire 1.9.0
Buffer overflow in the SetUp function in socket/request.c in CrossFire 1.9.0 allows remote attackers to execute arbitrary code via a long setup sound command, a different vulnerability than CVE-2006-1010.
network
low complexity
crossfire
7.5
2006-03-06 CVE-2006-1010 Denial Of Service vulnerability in Crossfire 1.7.0/1.8.0
Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.
network
low complexity
crossfire
6.4