cbcvebase.
CVE-2006-1010
published 2006-03-06

CVE-2006-1010: Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service…

PriorityP336medium6.4CVSS 2.0
AVNACLAuNCNIPAP
EXPLOIT
EPSS
17.25%
96.7th percentile
Buffer overflow in socket/request.c in CrossFire before 1.9.0, when oldsocketmode is enabled, allows remote attackers to cause a denial of service (segmentation fault) and possibly execute code by sending the server a large request.

Affected

13 ranges
VendorProductVersion rangeFixed in
crossfirecrossfire
crossfirecrossfire
crossfirecrossfire
crossfirecrossfire>= 0 < 1.9.0-11.9.0-1
crossfirecrossfire>= 0 < 1.9.0-21.9.0-2
crossfirecrossfire>= 0 < 1.9.0-11.9.0-1
crossfirecrossfire>= 0 < 1.9.0-21.9.0-2
crossfirecrossfire>= 0 < 1.9.0-11.9.0-1
crossfirecrossfire>= 0 < 1.9.0-21.9.0-2
crossfirecrossfire>= 0 < 1.9.0-11.9.0-1
crossfirecrossfire>= 0 < 1.9.0-21.9.0-2
debiancrossfire< crossfire 1.9.0-1 (bookworm)crossfire 1.9.0-1 (bookworm)
debiancrossfire< crossfire 1.9.0-2 (bookworm)crossfire 1.9.0-2 (bookworm)

CVSS provenance

nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:P
osv6.4MEDIUM
vendor_debian6.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.