Vulnerability Details CVE-2016-9400
The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code via vectors involving snap handling.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 85.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.openwall.com/lists/oss-security/2016/11/16/8
- http://www.openwall.com/lists/oss-security/2016/11/17/8
- http://www.securityfocus.com/bid/94381
- https://github.com/teeworlds/teeworlds/commit/ff254722a2683867fcb3e67569ffd36226c4bc62
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C4JNSBXXPE7O32ZMFK7D7YL6EKLG7PRV/
- https://security.gentoo.org/glsa/201705-13
- https://www.teeworlds.com/?page=news&id=12086
- http://www.openwall.com/lists/oss-security/2016/11/16/8
- http://www.openwall.com/lists/oss-security/2016/11/17/8
- http://www.securityfocus.com/bid/94381
- https://github.com/teeworlds/teeworlds/commit/ff254722a2683867fcb3e67569ffd36226c4bc62
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C4JNSBXXPE7O32ZMFK7D7YL6EKLG7PRV/
- https://security.gentoo.org/glsa/201705-13
- https://www.teeworlds.com/?page=news&id=12086