CVE-2007-4508

Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.

Published: Aug 23, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-4508
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
rival_interactive / prism	-	1.1.1.0.x
rebellion / rogue_trooper	-	1.0.x

http://aluigi.altervista.org/adv/asurabof-adv.txt
http://osvdb.org/39799
http://secunia.com/advisories/24023
http://secunia.com/advisories/26571
http://securityreason.com/securityalert/3053
http://www.securityfocus.com/archive/1/477357/100/0/threaded
http://www.securityfocus.com/bid/25411
http://www.vupen.com/english/advisories/2007/2955
http://www.vupen.com/english/advisories/2007/2956
https://exchange.xforce.ibmcloud.com/vulnerabilities/36221

Vulnerability Database

289,871

CVE-2007-4508