CVE-2007-1371
CVE-2007-1371
Multiple buffer overflows in Conquest 8.2a and earlier (1) allow local users to gain privileges by querying a metaserver that sends a long server entry processed by metaGetServerList and allow remote metaservers to execute arbitrary code via a long server entry processed by metaGetServerList; (2) allow attackers to have an unknown impact by exceeding the configured number of metaservers; and allow remote attackers to corrupt memory via a SP_CLIENTSTAT packet with certain values of (3) unum or (4) snum, different vulnerabilities than CVE-2003-0933.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/29717unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://secunia.com/advisories/24370http://securityreason.com/securityalert/2399https://exchange.xforce.ibmcloud.com/vulnerabilities/32849https://exchange.xforce.ibmcloud.com/vulnerabilities/32860http://www.radscan.com/conquest/cq-ml/msg00169.htmlhttp://www.securityfocus.com/archive/1/462184/100/0/threadedhttp://www.securityfocus.com/bid/22855http://www.vupen.com/english/advisories/2007/0854