Vulnerability Details CVE-2002-0964
Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents other players from connecting until the original responses have timed out.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.042
EPSS Ranking 88.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0248.html
- http://www.iss.net/security_center/static/9412.php
- http://www.securityfocus.com/bid/5076
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0248.html
- http://www.iss.net/security_center/static/9412.php
- http://www.securityfocus.com/bid/5076
Products affected by CVE-2002-0964
-
cpe:2.3:a:valve_software:half-life:1.1.0.4
-
cpe:2.3:a:valve_software:half-life:1.1.0.8
-
cpe:2.3:a:valve_software:half-life:1.1.0.9
-
cpe:2.3:a:valve_software:half-life:1.1.1.0
-
cpe:2.3:a:valve_software:half-life_dedicated_server:*
-
cpe:2.3:a:valve_software:half-life_dedicated_server:3.1.3