CVE-2006-1593

Current Description

The (1) ZD_MissingPlayer, (2) ZD_UseItem, and (3) ZD_LoadNewClientLevel functions in sv_main.cpp for (a) Zdaemon 1.08.01 and (b) X-Doom allows remote attackers to cause a denial of service (crash) via an invalid player slot or item number, which causes an invalid memory access, possibly due to an invalid array index.

Basic Data

PublishedApril 03, 2006
Last ModifiedOctober 18, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-399
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationX-doomX-doom1.06.07*******
    2.3ApplicationZdaemonZdaemon********1.08.01

Vulnerable Software List

VendorProductVersions
X-doom X-doom 1.06.07
Zdaemon Zdaemon *

References

NameSourceURLTags
http://aluigi.altervista.org/adv/zdaebof-adv.txthttp://aluigi.altervista.org/adv/zdaebof-adv.txtMISC
20060331 Buffer-overflow and in-game crash in Zdaemon 1.08.01http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044775.htmlFULLDISC
19496http://secunia.com/advisories/19496SECUNIAVendor Advisory
19509http://secunia.com/advisories/19509SECUNIAVendor Advisory
662http://securityreason.com/securityalert/662SREASON
20060331 Buffer-overflow and in-game crash in Zdaemon 1.08.01http://www.securityfocus.com/archive/1/429521/100/0/threadedBUGTRAQ
17340http://www.securityfocus.com/bid/17340BID
ADV-2006-1198http://www.vupen.com/english/advisories/2006/1198VUPENVendor Advisory
ADV-2006-1199http://www.vupen.com/english/advisories/2006/1199VUPENVendor Advisory
zdaemon-memory-access-dos(25593)https://exchange.xforce.ibmcloud.com/vulnerabilities/25593XF