Dopewars 1.5.12 allows remote attackers to cause a denial of service (segmentation fault) via a REQUESTJET message with an invalid location.
References
Configurations
History
21 Nov 2024, 01:07
Type | Values Removed | Values Added |
---|---|---|
References | () http://dopewars.svn.sourceforge.net/viewvc/dopewars/dopewars/trunk/ChangeLog?view=markup&pathrev=1033 - Patch | |
References | () http://dopewars.svn.sourceforge.net/viewvc/dopewars/dopewars/trunk/src/serverside.c?r1=1023&r2=1033&pathrev=1033 - | |
References | () http://secunia.com/advisories/36961 - Vendor Advisory | |
References | () http://www.securityfocus.com/archive/1/507012/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/36606 - Exploit |
Information
Published : 2009-10-08 17:30
Updated : 2024-11-21 01:07
NVD link : CVE-2009-3591
Mitre link : CVE-2009-3591
CVE.ORG link : CVE-2009-3591
JSON object : View
Products Affected
ben_webb
- dopewars
CWE
CWE-20
Improper Input Validation