CVE-2004-1522

Vulnerability

Army Men RTS version 1.0 is affected by a format string vulnerability in the game server. The server processes the player's nickname using a format string function without proper sanitization. When a player joins a server with a nickname containing format string specifiers (e.g., %n%n%n), the server crashes. The bug is present in the server component and requires no special configuration beyond the default game setup [1].

Exploitation

An attacker can exploit this vulnerability by connecting to a game server and setting a nickname that includes format string specifiers such as %n%n%n. No authentication or prior access is needed; the attacker simply joins the server with the malicious nickname. The server immediately crashes upon processing the nickname, causing a denial of service [1].

Impact

Successful exploitation results in a denial of service (application crash) of the game server. The reference does not indicate any possibility of code execution or data compromise; the impact is limited to server unavailability [1].

Mitigation

No fix has been released for this vulnerability. The game is no longer supported by the vendor, and no workarounds are provided. Users are advised to avoid playing on untrusted servers or to discontinue use of the software. The vulnerability is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog [1].