Vulnerability Details CVE-2005-2115
Soldier of Fortune II 1.02x and 1.03 allows remote attackers to cause a denial of service (server crash) via a large ID value in the ignore command, which is used as an array index and causes an out-of-bounds operation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://aluigi.altervista.org/adv/sof2ignore-adv.txt
- http://marc.info/?l=bugtraq&m=112008428126593&w=2
- http://secunia.com/advisories/15868
- http://www.osvdb.org/17649
- http://aluigi.altervista.org/adv/sof2ignore-adv.txt
- http://marc.info/?l=bugtraq&m=112008428126593&w=2
- http://secunia.com/advisories/15868
- http://www.osvdb.org/17649
Products affected by CVE-2005-2115
-
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.02
-
cpe:2.3:a:raven_software:soldier_of_fortune_2:1.03