QwikSec

Security Database

CVE

CWE

Training

CVE-2007-1371

Published: Mar 10, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple buffer overflows in Conquest 8.2a and earlier (1) allow local users to gain privileges by querying a metaserver that sends a long server entry processed by metaGetServerList and allow remote metaservers to execute arbitrary code via a long server entry processed by metaGetServerList; (2) allow attackers to have an unknown impact by exceeding the configured number of metaservers; and allow remote attackers to corrupt memory via a SP_CLIENTSTAT packet with certain values of (3) unum or (4) snum, different vulnerabilities than CVE-2003-0933.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SREASON

conquest-processpacket-dos(32860)

vdb-entry

x_refsource_XF

20070307 Buffer-overflow in Conquest client 8.2a (svn 691)

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_VUPEN

[conquest] 20070303 Re: security bugs in conquest

mailing-list

x_refsource_MLIST

conquest-metagetserverlist-bo(32849)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.