- Description
- Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:rebellion:rogue_trooper:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83D8B74F-D1A1-4EA2-A1AD-9996555B6553",
"versionEndIncluding": "1.0"
},
{
"criteria": "cpe:2.3:a:rival_interactive:prism:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E71C1D69-2A87-4370-A4B4-0355B027B6BF",
"versionEndIncluding": "1.1.1.0"
}
],
"operator": "OR"
}
]
}
]