Vulnerability Details CVE-2007-4508
Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.206
EPSS Ranking 95.3%
CVSS Severity
CVSS v2 Score 6.8
References
- http://aluigi.altervista.org/adv/asurabof-adv.txt
- http://osvdb.org/39799
- http://secunia.com/advisories/24023
- http://secunia.com/advisories/26571
- http://securityreason.com/securityalert/3053
- http://www.securityfocus.com/archive/1/477357/100/0/threaded
- http://www.securityfocus.com/bid/25411
- http://www.vupen.com/english/advisories/2007/2955
- http://www.vupen.com/english/advisories/2007/2956
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36221
- http://aluigi.altervista.org/adv/asurabof-adv.txt
- http://osvdb.org/39799
- http://secunia.com/advisories/24023
- http://secunia.com/advisories/26571
- http://securityreason.com/securityalert/3053
- http://www.securityfocus.com/archive/1/477357/100/0/threaded
- http://www.securityfocus.com/bid/25411
- http://www.vupen.com/english/advisories/2007/2955
- http://www.vupen.com/english/advisories/2007/2956
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36221
Products affected by CVE-2007-4508
-
cpe:2.3:a:rebellion:rogue_trooper:*
-
cpe:2.3:a:rival_interactive:prism:*