NVD

Id
3167  
Name
CVE-2008-3286  
Description
SWAT 4 1.1 and earlier allows remote attackers to cause a denial of service (daemon crash) via a (1) VERIFYCONTENT or (2) GAMECONFIG command sent to the server before user session initialization, which triggers a NULL pointer dereference; or (3) a GAMESPYRESPONSE command followed by a long RS string.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-03  
Published
2008-07-24  
Modified Date
2011-03-07  
Seq
2008-3286  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
20157 3167 CVE-2008-3286 http://aluigi.altervista.org/adv/swat4x-adv.txt  View
20158 3167 CVE-2008-3286 http://aluigi.org/fakep/unrealfp.zip  View
20159 3167 CVE-2008-3286 30299  View
20160 3167 CVE-2008-3286 ADV-2008-2149  View
20161 3167 CVE-2008-3286 swat4-verifycontent-gameconfig-dos(43901)  View
20162 3167 CVE-2008-3286 swat4-gamespyresponse-dos(43902)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50740 JVNDB-2008-006050 SWAT におけるサービス運用妨害 (DoS) の脆弱性 SWAT には、サービス運用妨害 (デーモンクラッシュ) 状態となる脆弱性が存在します。 CVE-2008-3286 33399 CVE-2008-3286 3167 5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-006050.html 2008-07-24 2012-12-20 View