Crossfire

CVEs (3)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2006-1010	Crossfire Crossfire	0.05	—	0.28	Mar 6, 2006	Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.
CVE-2006-1236	Crossfire Crossfire	0.04	—	0.12	Mar 15, 2006	Buffer overflow in the SetUp function in socket/request.c in CrossFire 1.9.0 allows remote attackers to execute arbitrary code via a long setup sound command, a different vulnerability than CVE-2006-1010.
CVE-2008-4908	Crossfire Crossfire	0.00	—	0.00	Nov 4, 2008	maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.

CVE-2006-1010Mar 6, 2006
Crossfire
Crossfire
risk 0.05cvss —epss 0.28
Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.
CVE-2006-1236Mar 15, 2006
Crossfire
Crossfire
risk 0.04cvss —epss 0.12
Buffer overflow in the SetUp function in socket/request.c in CrossFire 1.9.0 allows remote attackers to execute arbitrary code via a long setup sound command, a different vulnerability than CVE-2006-1010.
CVE-2008-4908Nov 4, 2008
Crossfire
Crossfire
risk 0.00cvss —epss 0.00
maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.