CVE-2006-4006
CVE-2006-4006
The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size when sending a reply, and allows remote attackers to read portions of server memory.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28314unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://aluigi.altervista.org/adv/bcloneboom-adv.txthttp://aluigi.org/poc/bcloneboom.ziphttp://secunia.com/advisories/21303http://secunia.com/advisories/21985https://exchange.xforce.ibmcloud.com/vulnerabilities/28092http://www.debian.org/security/2006/dsa-1180http://www.osvdb.org/27648http://www.securityfocus.com/bid/19255http://www.vupen.com/english/advisories/2006/3067