Vulnerability Description
Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (daemon crash) via format string specifiers in a nickname.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cor Entertainment | Alien Arena 2007 | <= 6.10 |
Related Weaknesses (CWE)
References
- http://aluigi.altervista.org/adv/aa2k7x-adv.txt
- http://archives.neohapsis.com/archives/fulldisclosure/2007-09/0049.html
- http://osvdb.org/40507
- http://secunia.com/advisories/26819
- http://securityreason.com/securityalert/3105
- http://www.quakesrc.org/forums/viewtopic.php?t=6843&start=1
- http://www.securityfocus.com/archive/1/478628/100/0/threaded
- http://www.securityfocus.com/bid/25559Exploit
- http://www.vupen.com/english/advisories/2007/3169
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36463
- http://aluigi.altervista.org/adv/aa2k7x-adv.txt
- http://archives.neohapsis.com/archives/fulldisclosure/2007-09/0049.html
- http://osvdb.org/40507
- http://secunia.com/advisories/26819
- http://securityreason.com/securityalert/3105
FAQ
What is CVE-2007-4754?
CVE-2007-4754 is a vulnerability with a CVSS score of 7.5 (HIGH). Format string vulnerability in the safe_bprintf function in acesrc/acebot_cmds.c in Alien Arena 2007 6.10 and earlier allows remote attackers to cause a denial of service (daemon crash) via format str...
How severe is CVE-2007-4754?
CVE-2007-4754 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4754?
Check the references section above for vendor advisories and patch information. Affected products include: Cor Entertainment Alien Arena 2007.