Bontago Game Server 1.1 - Remote Nickname Buffer Overrun

EDB-ID:

25132

CVE:

N/A




Platform:

Multiple

Date:

2005-02-21


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

source: https://www.securityfocus.com/bid/12603/info

The Bontago game server is reported to be affected by a remote buffer overrun vulnerability. The issue is reported to exist due to a lack of sufficient boundary checks performed on client-supplied 'nickname' values.

It is conjectured that a remote attacker may exploit this vulnerability to influence execution flow of a target game server and have arbitrary supplied instructions executed in the context of the affected process.

This vulnerability is reported to exist in Bontago versions up to an including version 1.1. 

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/25132.zip