VYPR
Unrated severityNVD Advisory· Published Aug 7, 2006· Updated Jun 16, 2026

CVE-2006-4006

CVE-2006-4006

Description

The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size when sending a reply, and allows remote attackers to read portions of server memory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:bomberclone:bomberclone:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:bomberclone:bomberclone:*:*:*:*:*:*:*:*range: <=0.11.6
    • cpe:2.3:a:bomberclone:bomberclone:0.11.3:*:*:*:*:*:*:*
    • cpe:2.3:a:bomberclone:bomberclone:0.11.4:*:*:*:*:*:*:*
    • cpe:2.3:a:bomberclone:bomberclone:0.11.5:*:*:*:*:*:*:*
    • (no CPE)range: <=0.11.6

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.