Описание
Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting until the original responses have timed out.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.1 (включая)
Одно из
cpe:2.3:a:valve_software:half-life:1.1.0.4:*:linux:*:*:*:*:*
cpe:2.3:a:valve_software:half-life:1.1.0.4:*:windows:*:*:*:*:*
cpe:2.3:a:valve_software:half-life:1.1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:valve_software:half-life:1.1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:valve_software:half-life:1.1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:valve_software:half-life_dedicated_server:*:*:*:*:*:*:*:*
cpe:2.3:a:valve_software:half-life_dedicated_server:3.1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06281
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting until the original responses have timed out.
EPSS
Процентиль: 91%
0.06281
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other