CVE-2004-0278

Опубликовано: 23 нояб. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Ratbag game engine, as used in products such as Dirt Track Racing, Leadfoot, and World of Outlaws Spring Cars, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet that specifies the length of data to read and then sends a second TCP packet that contains less data than specified, which causes Ratbag to repeatedly check the socket for more data.

Ссылки

http://marc.info/?l=bugtraq&m=107655269820530&w=2
http://www.securityfocus.com/bid/9644
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15188
http://marc.info/?l=bugtraq&m=107655269820530&w=2
http://www.securityfocus.com/bid/9644
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15188

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ratbag:dirt_track_racing:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:ratbag:dirt_track_racing:2.0:*:*:*:*:*:*:*

cpe:2.3:a:ratbag:dirt_track_racing_australia:*:*:*:*:*:*:*:*

cpe:2.3:a:ratbag:dirt_track_racing_sprint_cars:*:*:*:*:*:*:*:*

cpe:2.3:a:ratbag:leadfoot:*:*:*:*:*:*:*:*

cpe:2.3:a:ratbag:world_of_outlaws_sprint_cars:*:*:*:*:*:*:*:*

EPSS

Процентиль: 75%

0.00886

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6m8x-9x29-g395

github

почти 4 года назад