CVE-2015-4016

The client detection protocol in Valve Steam allows remote attackers to cause a denial of service (process crash) via a crafted response to a broadcast packet.
References
Link Resource
http://store.steampowered.com/news/16801/ Patch Vendor Advisory
http://www.securityfocus.com/bid/74735 Third Party Advisory VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-233/ Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:valvesoftware:steam_client:*:*:*:*:*:*:*:*

History

07 Feb 2022, 19:43

Type Values Removed Values Added
CPE cpe:2.3:a:valve:steam:-:*:*:*:*:*:*:* cpe:2.3:a:valvesoftware:steam_client:*:*:*:*:*:*:*:*
CWE CWE-17 CWE-20
References (MISC) http://www.zerodayinitiative.com/advisories/ZDI-15-233/ - (MISC) http://www.zerodayinitiative.com/advisories/ZDI-15-233/ - Third Party Advisory, VDB Entry
References (BID) http://www.securityfocus.com/bid/74735 - (BID) http://www.securityfocus.com/bid/74735 - Third Party Advisory, VDB Entry

Information

Published : 2015-05-20 18:59

Updated : 2024-02-04 18:53


NVD link : CVE-2015-4016

Mitre link : CVE-2015-4016

CVE.ORG link : CVE-2015-4016


JSON object : View

Products Affected

valvesoftware

  • steam_client
CWE
CWE-20

Improper Input Validation