Back to search
CVE-2006-1275
Published: Mar 19, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attribute in a PLAYER XML tag, (2) joining with a long ID attribute or non-trailing ' characters, which causes a <none> name to be assigned, and then disconnecting, or (3) a long CDATA message attribute, which prevents closing tags from being added to the string.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-0935
vdb-entry
x_refsource_VUPEN
ggzgaminzone-xml-dos(25164)
vdb-entry
x_refsource_XF
17094
vdb-entry
x_refsource_BID
http://aluigi.altervista.org/adv/ggzcdos-adv.txt
x_refsource_MISC
19212
third-party-advisory
x_refsource_SECUNIA
23848
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now