 |
|
|
|
| Gigabyte Broadband Router unauthorized access | | Published: |  | 25.02.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 3474 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | It's possible to bypass authentication. |
| Affected: |  | GIGABYTE : Gn-B46B |
| Original document |  | Rafel Ivgi, Gigabyte Broadband Router - Multiple Vulnerabilities (25.02.2004) |
| FlexWATCH unauthorized access | | Published: | | 25.02.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3475 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Authentication can be bypassed. |
| Affected: | | SEYEON : FlexWATCH 2.2 |
| Original document | | Rafel Ivgi, FlexWATCH-Webs 2.2 (NTSC) Authorization Bypass (25.02.2004) |
| Alcatel Omniswitch 7000 ÂùÛ | | Published: | | 25.02.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3476 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | ALCATEL : Alcatel 7700 | | | | ALCATEL : Alcatel 7800 | | | | ALCATEL : Alcatel 8800 |
| Original document | | Michael Shekman, Alcatel Omniswitch 7000 series (25.02.2004) |
| mformat privilege escalation | | Published: | | 25.02.2004 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3477 | | Type: | | local | | Level: | | 5/10 | | Description: | | It's possible to access any file for reading and create world-writable root-owned files. |
| Affected: | | MTOOLS : mtools 3.9 |
| Original document | | MANDRAKE, [Full-Disclosure] MDKSA-2004:016 - Updated mtools packages fix local root vulnerability (25.02.2004) |
Multiple Windows ASN.1 bugs
updated since 11.02.2004 | | Published: | | 25.02.2004 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 3438 | | Type: | | remote | | Level: | | 10/10 | | Description: | | Heap corruptions, heap buffer overflows open possibilities for attack via different protocols and applications. |
| Affected: | | MICROSOFT : Windows NT 4.0 Workstation | | | | MICROSOFT : Windows NT 4.0 Server | | | | MICROSOFT : Windows 2000 Server | | | | MICROSOFT : Windows 2000 Professional | | | | MICROSOFT : Internet Explorer 5.5 | | | | MICROSOFT : Internet Explorer 6.0 | | | | MICROSOFT : Windows XP | | | | MICROSOFT : Windows 2003 Server |
| Original document | | flashsky fangxing, MS ASN library is fraught not only with integer overflow, but also with stack overflow. (25.02.2004) |
| | | MICROSOFT, Microsoft Security Bulletin MS04-007 (11.02.2004) |
| | | Marc Maiffret, EEYE: Microsoft ASN.1 Library Bit String Heap Corruption (11.02.2004) |
| | | Marc Maiffret, EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption (11.02.2004) |
Multiple online games vulnerabilities
updated since 25.02.2004 | | Published: | | 11.05.2005 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 3478 | | Type: | | remote | | Level: | | 5/10 |
| Affected: | | VALVE : Half-Life 1.1 | | | | INNERLOOP : IGI 2 | | | | REBELLION : Judge Dredd: Dredd vs. Death 1.01 | | | | EA : Allied Assault 1.11 | | | | EA : Breakthrough 2.40 | | | | EA : Spearhead 2.15 | | | | PEOPLECANFLY : Painkiller 1.31 | | | | MASSIVE : Ground Control II 1.0 | | | | NIVAL : Etherlords I 1.07 | | | | NIVAL : Etherlords II 1.03 | | | | CODEMASTERS : Colin McRae Rally 04 | | | | CODEMASTERS : Race Driver 1.20 | | | | SCORCHED3D : Scorched 3D 36.2 | | | | UNREAL : Unreal Tournament 2003 | | | | EPICGAMES : Unreal 1 | | | | EPICGAMES : Unreal II XMP | | | | EPICGAMES : Unreal Tournament | | | | EPICGAMES : Unreal Tournament 2004 | | | | AKELLA : Privateer's Bounty: Age of Sail II 1.04 | | | | REDSOTRM : Ghost Recon 1.4 | | | | REDSTORM : The Sum of all Fears 1.1 | | | | VOLITION : Red Faction 1.20 | | | | LIMUNLTD : Crafty 19.3 | | | | CHROME : Chrome 1.2 | | | | CLEVERS : Terminator 3 1.0 | | | | MYTHIC : Dark Age of Camelot | | | | YAGER : Yager 5.24 | | | | TINCAT : Tincat 2.0 | | | | LUCASART : Star Wars Jedi Knight: Jedi Academy 1.011 | | | | BRATDESIGNS : Breed | | | | ZABOO : Halocon | | | | XPANDRALLY : Xpand Rally 1.0 | | | | PEOPLECANFLY : Painkiller 1.35 | | | | ARMAGETRON : Armagetron 0.2 | | | | MERCURYSTEAM : Scrapland 1.0 | | | | BURUT : Kreed 1.05 | | | | DICE : Battlefield 1942 1.6 | | | | DICE : Battlefield Vietnam 1.2 | | | | GAMESPY : Gamespy | | | | WINGSSIMULATIONS : SÖLDNER - Secret Wars 30830 | | | | 4DRULERS : Gore: Ultimate Soldier 1.50 | | | | QuickSilver : Master of Orion III 1.2 | | | | IDSOFTWARE : Quake II 3.2 | | | | SIERRA : Aliens Versus Predator 2 1.0 | | | | GTI : Blood 2 2.1 | | | | SIERRA : Contract J.A.C.K. 1.1 | | | | EA : Global Operations 2.0 | | | | EA : Global Operations 2.1 | | | | 3DO : Legends of Might & Magic 1.1 | | | | SIERRA : No One Lives Forever 1.004 | | | | SIERRA : No One Lives Forever 2 1.3 | | | | 3DO : Army Men 1.0 | | | | NMG : Hired Team 2.0 | | | | RAVENSOFT : Soldier of Fortune II 1.03 | | | | LUCASART : Star Wars Battlefront 1.11 | | | | SERIOUS : Serious Sam Second Encounter 1.07 | | | | SERIOUS : Alpha Black Zero | | | | 21-6 : Orbz 2.10 | | | | MICROSOFT : Halo: Combat Evolved 1.04 | | | | PLAYLOGICZERO : Alpha Black Zero 1.04 |
| Original document | | Luigi Auriemma, Gamespy cd-key validation system: "Cd-key in use" DoS versus many games (11.05.2005) |
| | | Vade 79, sumus[v0.2.2]: (httpd) remote buffer overflow exploit. (15.04.2005) |
| | | Luigi Auriemma, Multiple vulnerabilities in Yager 5.24 (15.04.2005) |
| | | Luigi Auriemma, In-game server crash in Call of Duty 1.5b and United Offensive 1.51b (03.04.2005) |
| | | Luigi Auriemma, In-game server buffer-overflow in Jedi Academy 1.011 (03.04.2005) |
| | | Luigi Auriemma, In-game players kicking in the Quake 3 engine (03.04.2005) |
| | | Luigi Auriemma, Buffer-overflow in Tincat 2 minor than 2.0.28 (Sacred, Settlers 5 and others) (31.03.2005) |
| | | Luigi Auriemma, [Full-Disclosure] Server termination in Scrapland 1.0 (28.02.2005) |
| | | Luigi Auriemma, In-game cl_guid crash in Soldier of Fortune II 1.03 (25.02.2005) |
| | | Luigi Auriemma, Infostring crash and shutdown in the Quake 3 engine (14.02.2005) |
| | | Luigi Auriemma, [Full-Disclosure] Crashes and socket unreacheable in Armagetron Advanced 0.2.7.0 (11.02.2005) |
| | | Luigi Auriemma, [Full-Disclosure] Limited buffer-overflow in Painkiller 1.35 (02.02.2005) |
| | | Luigi Auriemma, [Full-Disclosure] Broadcast crash in Xpand Rally 1.0.0.0 (31.01.2005) |
| | | Luigi Auriemma, Server crash in Breed patch #1 (14.01.2005) |
| | | Luigi Auriemma, Socket unreacheable in Amp II engine (07.01.2005) |
| | | Luigi Auriemma, Socket termination, format string and XSS in Soldner Secret Wars 30830 (06.01.2005) |
| | | Luigi Auriemma, Socket unreacheable in the Lithtech engine (new protocol) (15.12.2004) |
| | | Luigi Auriemma, In-game buffer-overflow in the Gamespy cd-key validation SDK (10.12.2004) |
| | | Luigi Auriemma, Broadcast client crash in Battlefield 1942 1.6.19 and Vietnam 1.2 (08.12.2004) |
| | | Luigi Auriemma, Multiple vulnerabilities in Kreed 1.05 (04.12.2004) |
| | | Luigi Auriemma, Buffer-overflow in Orbz 2.10 (30.11.2004) |
| | | Luigi Auriemma, [Full-Disclosure] Players overflow in Serious engine UDP (was Alpha Black Zero, 29 Sep 2004) (29.11.2004) |
| | | Luigi Auriemma, Limited buffer-overflow and arbitrary memory access in Star Wars Battlefront 1.11 (25.11.2004) |
| | | Luigi Auriemma, Broadcast memory corruption in Soldier of Fortune II 1.03 (24.11.2004) |
| | | Luigi Auriemma, Broadcast client crash in Halo 1.05 (24.11.2004) |
| | | Luigi Auriemma, Multiple vulnerabilities in Hired Team: Trial (Shine engine) (16.11.2004) |
| | | Luigi Auriemma, [Full-Disclosure] Format string bug in Army Men RTS (15.11.2004) |
| | | Luigi Auriemma, In-game format string bug in the Lithtech engine (06.11.2004) |
| | | Richard Stanway, Multiple Vulnerabilites in Quake II Server (28.10.2004) |
| | | Luigi Auriemma, Crashs in Master of Orion III 1.2.5 (28.10.2004) |
| | | Luigi Auriemma, Buffer-overflow in Age of Sail II 1.04.151 (22.10.2004) |
| | | Luigi Auriemma, In-game format string in Judge Dredd vs. Death 1.01 (04.10.2004) |
| | | Luigi Auriemma, Crash in Alpha Black Zero 1.04 (30.09.2004) |
| | | Luigi Auriemma, CoD United Offensive boom boom (27.09.2004) |
| | | Luigi Auriemma, Off-by-one bug in Halo 1.04 (10.09.2004) |
| | | Luigi Auriemma, Broadcast forced exit in Ground Control II 1.0.0.7 (30.08.2004) |
| | | Luigi Auriemma, Limited buffer overflow in Painkiller 1.31 (25.08.2004) |
| | | Luigi Auriemma, Medal of Honor remote buffer-overflow (19.07.2004) |
| | | Luigi Auriemma, Remote crash of Half-Life servers and clients (versions before the 07 July 2004) (13.07.2004) |
| | | Luigi Auriemma, [Full-Disclosure] Code execution in the Unreal Engine through \secure\ packet (21.06.2004) |
| | | Luigi Auriemma, Various crashs and fun in Race Driver 1.20 (09.06.2004) |
| | | Luigi Auriemma, Colin McRae Rally 04 broadcast clients crash (05.06.2004) |
| | | Luigi Auriemma, Arbitrary file overwriting in Unreal engine through UMOD (23.04.2004) |
| | | GENTOO, [ GLSA 200404-12 ] Scorched 3D server chat box format string vulnerability (09.04.2004) |
| | | Luigi Auriemma, Format string bug in IGI 2: Covert Strike 1.3 (06.04.2004) |
| | | Luigi Auriemma, Remote crash in Etherlords I 1.07 and II 1.03 (26.03.2004) |
| | | Luigi Auriemma, Broadcast client buffer-overflow in Terminator 3 1.0 (25.03.2004) |
| | | Luigi Auriemma, Server freeze in The Rage 1.01 (24.03.2004) |
| | | Todd Chapman, [VulnWatch] Dark Age of Camelot login client vulnerability to man in the middle attack (24.03.2004) |
| | | Luigi Auriemma, [Full-Disclosure] Broadcast client buffer-overflow in Terminator 3 1.0 (20.03.2004) |
| | | Luigi Auriemma, Chrome 1.2.0.0 server crash (19.03.2004) |
| | | Angelo Rosiello, Crafty Game Stack Overflow & Exploit (17.03.2004) |
| | | Luigi Auriemma, Unreal engine updates and Battle Mages advisory (11.03.2004) |
| | | Luigi Auriemma, Format string bug in EpicGames Unreal engine (10.03.2004) |
| | | Luigi Auriemma, Desert Rats vs. Afrika Korps (Haegemonia bug) (09.03.2004) |
| | | Luigi Auriemma, Clients broadcast buffer overflow in Red Faction <= 1.20 (02.03.2004) |
| | | Luigi Auriemma, Remote server crash in Haegemonia <= 1.07 (26.02.2004) |
| | | Luigi Auriemma, Hidden Gamespy code leads to vulnerabilities in diffused games (BF1942, Halo, Dredd and more) (25.02.2004) |
| | | Luigi Auriemma, Remote crash in Ghost Recon engine (25.02.2004) |
|
|
|
|
|
| |
|
| |
