CVE-2007-5264

EPSS 3.1%

Battlefront Dropteam 1.3.3 and earlier sends the client's online account name and password to the game server, which allows malicious game servers to steal account information.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/30643unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://aluigi.altervista.org/adv/dropteamz-adv.txt http://secunia.com/advisories/27107 http://securityreason.com/securityalert/3202 https://exchange.xforce.ibmcloud.com/vulnerabilities/36978 http://www.securityfocus.com/archive/1/481616/100/0/threaded http://www.securityfocus.com/bid/25943