ID CVE-2005-0849
Summary Multiple games developed by FUN labs, including 4X4 Off-road Adventure III, Big Game Hunter, Dangerous Hunts, Deer Hunt, Revolution, Secret Service, Shadow Force, and US Most Wanted, allow remote attackers to cause a denial of service (crash from invalid memory access) via a malformed join packet with values that cause the server to copy more memory than was actually provided in the packet.
References
Vulnerable Configurations
  • cpe:2.3:a:funlabs:4x4_off-road_adventure_iii:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:4x4_off-road_adventure_iii:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:cabelas_big_game_hunter_2004_season:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:cabelas_big_game_hunter_2004_season:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:cabelas_big_game_hunter_2005:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:cabelas_big_game_hunter_2005:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:cabelas_dangerous_hunts:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:cabelas_dangerous_hunts:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:cabelas_deer_hunt_2005_season:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:cabelas_deer_hunt_2005_season:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:revolution:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:revolution:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:secret_service_in_harms_way:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:secret_service_in_harms_way:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:shadow_force_razor_unit:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:shadow_force_razor_unit:*:*:*:*:*:*:*:*
  • cpe:2.3:a:funlabs:us_most_wanted_nowhere_to_hide:*:*:*:*:*:*:*:*
    cpe:2.3:a:funlabs:us_most_wanted_nowhere_to_hide:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 05-09-2008 - 20:47)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
misc http://aluigi.altervista.org/adv/funlabsboom-adv.txt
sectrack 1013492
secunia 14638
Last major update 05-09-2008 - 20:47
Published 02-05-2005 - 04:00
Last modified 05-09-2008 - 20:47
Back to Top