NVD

Id
16312  
Name
CVE-2010-5077  
Description
server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via a spoofed (1) getstatus or (2) rcon request.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-18  
Published
2014-10-27  
Modified Date
2014-10-28  
Seq
2010-5077  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
91723 16312 CVE-2010-5077 http://openarena.ws/board/index.php?topic=4391.0  View
91724 16312 CVE-2010-5077 http://permalink.gmane.org/gmane.comp.games.ioquake3/961  View
91725 16312 CVE-2010-5077 DSA-2442  View
91726 16312 CVE-2010-5077 http://www.ioquake.org/forums/viewtopic.php?f=12&t=1694  View
91727 16312 CVE-2010-5077 [oss-security] 20120326 Re: CVE-2010 Request: quake3 / openarena-server: DDoS by processing "getstatus" and "rcon" packets  View
91728 16312 CVE-2010-5077 20120326 Traffic amplification via Quake 3-based servers  View
91729 16312 CVE-2010-5077 http://www.urbanterror.info/forums/topic/27825-drdos/  View
91730 16312 CVE-2010-5077 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=665656  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
39894 JVNDB-2010-005679 ioquake3 などで使用される Quake3 Arena の server/sv_main.c におけるサービス運用妨害 (DoS) の脆弱性 ioquake3、OpenArena、Tremulous およびその他の製品で使用される Quake3 Arena の server/sv_main.c には、サービス運用妨害 (ネットワークトラフィックの増幅) 状態にされる脆弱性が存在します。 CVE-2010-5077 47657 CVE-2010-5077 16312 7.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-005679.html 2010-01-03 2014-10-30 View