Vulnerability Details CVE-2007-5713
Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow attackers to execute arbitrary code or cause a denial of service via unspecified input related to geolocation, which triggers an error message from the (1) geoip_code2 or (2) geoip_code3 function, leading to a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.7%
CVSS Severity
CVSS v2 Score 7.5
References
- http://bugs.alliedmods.net/?do=details&task_id=519
- http://osvdb.org/41980
- http://secunia.com/advisories/27411
- http://wiki.alliedmods.net/AMX_Mod_X_1.8.0_Changes
- http://www.securityfocus.com/bid/26218
- http://bugs.alliedmods.net/?do=details&task_id=519
- http://osvdb.org/41980
- http://secunia.com/advisories/27411
- http://wiki.alliedmods.net/AMX_Mod_X_1.8.0_Changes
- http://www.securityfocus.com/bid/26218
Products affected by CVE-2007-5713
-
cpe:2.3:a:amxmodx:amx_mod_x:1.76d
-
cpe:2.3:a:valve_software:half-life_dedicated_server:*