FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-3913

This CVE name corresponds to:

Entered Topic
2006-09-26 freeciv -- Denial of Service Vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2006-3913 at cve.mitre.org

Details

Type Candidate
Name CVE-2006-3913
Phase Assigned(20060727)

Description

Buffer overflow in Freeciv 2.1.0-beta1 and earlier, and SVN 15 Jul 2006 and earlier, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a (1) negative chunk_length or a (2) large chunk->offset value in a PACKET_PLAYER_ATTRIBUTE_CHUNK packet in the generic_handle_player_attribute_chunk function in common/packets.c, and (3) a large packet->length value in the handle_unit_orders function in server/unithand.c.

References

Source Reference
BUGTRAQ 20060723 Two crash vulnerabilities in Freeciv 2.1.0-beta1 (SVN 15 Jul 2006)
MISC http://aluigi.altervista.org/adv/freecivx-adv.txt
DEBIAN DSA-1142
MANDRIVA MDKSA-2006:135
BID 19117
VUPEN ADV-2006-2942
SECUNIA 21171
SECUNIA 21254
SECUNIA 21352
SREASON 1296
XF freeciv-packetsc-dos(27955)
XF freeciv-unithand-dos(27956)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.