Vulnerability Description
Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow attackers to execute arbitrary code or cause a denial of service via unspecified input related to geolocation, which triggers an error message from the (1) geoip_code2 or (2) geoip_code3 function, leading to a buffer overflow.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amxmodx | Amx Mod X | 1.76d |
| Valve Software | Half-Life Dedicated Server | All versions |
Related Weaknesses (CWE)
References
- http://bugs.alliedmods.net/?do=details&task_id=519
- http://osvdb.org/41980
- http://secunia.com/advisories/27411PatchVendor Advisory
- http://wiki.alliedmods.net/AMX_Mod_X_1.8.0_Changes
- http://www.securityfocus.com/bid/26218Patch
- http://bugs.alliedmods.net/?do=details&task_id=519
- http://osvdb.org/41980
- http://secunia.com/advisories/27411PatchVendor Advisory
- http://wiki.alliedmods.net/AMX_Mod_X_1.8.0_Changes
- http://www.securityfocus.com/bid/26218Patch
FAQ
What is CVE-2007-5713?
CVE-2007-5713 is a vulnerability with a CVSS score of 7.5 (HIGH). Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for Half-Life Server might allow attackers to execute arbitrary code or cause a denial of service via unspecified input related to ge...
How severe is CVE-2007-5713?
CVE-2007-5713 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5713?
Check the references section above for vendor advisories and patch information. Affected products include: Amxmodx Amx Mod X, Valve Software Half-Life Dedicated Server.