Vulnerability Description
Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rebellion | Rogue Trooper | <= 1.0 |
| Rival Interactive | Prism | <= 1.1.1.0 |
References
- http://aluigi.altervista.org/adv/asurabof-adv.txt
- http://osvdb.org/39799
- http://secunia.com/advisories/24023
- http://secunia.com/advisories/26571
- http://securityreason.com/securityalert/3053
- http://www.securityfocus.com/archive/1/477357/100/0/threaded
- http://www.securityfocus.com/bid/25411Exploit
- http://www.vupen.com/english/advisories/2007/2955
- http://www.vupen.com/english/advisories/2007/2956
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36221
- http://aluigi.altervista.org/adv/asurabof-adv.txt
- http://osvdb.org/39799
- http://secunia.com/advisories/24023
- http://secunia.com/advisories/26571
- http://securityreason.com/securityalert/3053
FAQ
What is CVE-2007-4508?
CVE-2007-4508 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a lo...
How severe is CVE-2007-4508?
CVE-2007-4508 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4508?
Check the references section above for vendor advisories and patch information. Affected products include: Rebellion Rogue Trooper, Rival Interactive Prism.