Vulnerability Description
Carsten's 3D Engine (Ca3DE), March 2004 version and earlier, allows remote attackers to execute arbitrary code via text strings that are not null terminated, which triggers a null dereference.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ca3De | Ca3De | All versions |
References
- http://aluigi.altervista.org/adv/ca3dex-adv.txtExploit
- http://secunia.com/advisories/14483
- http://securitytracker.com/id?1013361Exploit
- http://www.securityfocus.com/bid/12727Exploit
- http://aluigi.altervista.org/adv/ca3dex-adv.txtExploit
- http://secunia.com/advisories/14483
- http://securitytracker.com/id?1013361Exploit
- http://www.securityfocus.com/bid/12727Exploit
FAQ
What is CVE-2005-0672?
CVE-2005-0672 is a vulnerability with a CVSS score of 7.5 (HIGH). Carsten's 3D Engine (Ca3DE), March 2004 version and earlier, allows remote attackers to execute arbitrary code via text strings that are not null terminated, which triggers a null dereference.
How severe is CVE-2005-0672?
CVE-2005-0672 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0672?
Check the references section above for vendor advisories and patch information. Affected products include: Ca3De Ca3De.