CVE-2007-5264

Опубликовано: 08 окт. 2007

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Battlefront Dropteam 1.3.3 and earlier sends the client's online account name and password to the game server, which allows malicious game servers to steal account information.

Ссылки

http://aluigi.altervista.org/adv/dropteamz-adv.txt
http://secunia.com/advisories/27107
Vendor Advisory
http://securityreason.com/securityalert/3202
http://www.securityfocus.com/archive/1/481616/100/0/threaded
http://www.securityfocus.com/bid/25943
https://exchange.xforce.ibmcloud.com/vulnerabilities/36978
http://aluigi.altervista.org/adv/dropteamz-adv.txt
http://secunia.com/advisories/27107
Vendor Advisory
http://securityreason.com/securityalert/3202
http://www.securityfocus.com/archive/1/481616/100/0/threaded
http://www.securityfocus.com/bid/25943
https://exchange.xforce.ibmcloud.com/vulnerabilities/36978

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:battlefront:dropteam:*:*:*:*:*:*:*:*

Версия до 1.3.3 (включая)

EPSS

Процентиль: 92%

0.08616

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-fqrg-p497-vw5j

github

почти 4 года назад