Vulnerability Description
Multiple Red Storm web-based games, including Ghost Recon 1.4 and earlier, Desert Siege, and The Sum of all Fears 1.1.1.0 and earlier, do not properly check return values from certain functions, which allows remote attackers to cause a denial of service (hang) via packets that contain text strings with incorrect size values.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redstorm | Desert Siege | All versions |
| Redstorm | Ghost Recon | 1.4 |
| Redstorm | The Sum Of All Fears | 1.1.1.0 |
References
- http://aluigi.altervista.org/adv/grboom-adv.txtExploit
- http://www.securityfocus.com/archive/1/355051Exploit
- http://www.securityfocus.com/bid/9738
- http://www.zone-h.org/advisories/read/id=4038Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15305
- http://aluigi.altervista.org/adv/grboom-adv.txtExploit
- http://www.securityfocus.com/archive/1/355051Exploit
- http://www.securityfocus.com/bid/9738
- http://www.zone-h.org/advisories/read/id=4038Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15305
FAQ
What is CVE-2004-2371?
CVE-2004-2371 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple Red Storm web-based games, including Ghost Recon 1.4 and earlier, Desert Siege, and The Sum of all Fears 1.1.1.0 and earlier, do not properly check return values from certain functions, which...
How severe is CVE-2004-2371?
CVE-2004-2371 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2371?
Check the references section above for vendor advisories and patch information. Affected products include: Redstorm Desert Siege, Redstorm Ghost Recon, Redstorm The Sum Of All Fears.