CVE-2009-3924

Published Nov 10, 2009

Last updated 7 years ago

Overview

Description: Buffer overflow in pbsv.dll, as used in Soldier of Fortune II and possibly other applications when Even Balance PunkBuster 1.728 or earlier is enabled, allows remote attackers to cause a denial of service (application server crash) and possibly execute arbitrary code via a long restart packet.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:raven_software:soldier_of_fortune_2:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B80C05C-6B35-4B6C-990F-90032343BBD4"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "764E954C-374A-4947-B161-FD70101CF60F",
            "versionEndIncluding": "1.728"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.272:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D3F9AE0-21BA-46EF-9478-69FB9CCABF69"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.457:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1056D82-5F58-4995-A3ED-8C2DF9E28BDE"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.458:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98AF72B7-746E-4D41-9F80-5F54A9ACBCDF"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.641:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59F0238D-A80E-4B2F-99BB-76053AFE313E"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.642:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3E1E82C-6001-49A2-AF1D-9436F00109DE"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.718:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBFCE4B0-699E-401C-B40D-38E240DCA9FA"
          },
          {
            "criteria": "cpe:2.3:a:punkbuster:punkbuster:1.723:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BE4C80D-994E-48EF-A8BA-8D62B808628B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References