QwikSec

Security Database

CVE

CWE

Training

CVE-2006-3788

Published: Jul 21, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple buffer overflows in multiplay.cpp in UFO2000 svn 1057 allow remote attackers to execute arbitrary code via (1) a long unit name in Net::recv_add_unit,; (2) large values to Net::recv_rules, Net::recv_select_unit, Net::recv_options, and Net::recv_unit_data; and (3) a large mapdata GEODATA structure in Net::recv_map_data.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_SECTRACK

http://svn.sourceforge.net/viewcvs.cgi/ufo2000/trunk/src/multiplay.cpp?view=log

x_refsource_CONFIRM

20060716 Multiple vulnerabilities in UFO2000 svn 1057

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SREASON

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_GENTOO

vdb-entry

x_refsource_VUPEN

http://aluigi.altervista.org/adv/ufo2ko-adv.txt

x_refsource_MISC

http://svn.sourceforge.net/viewcvs.cgi/ufo2000/trunk/src/server_transport.cpp?view=log

x_refsource_CONFIRM

ufo2000-recvaddunit-bo(27798)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.