Info

Disclosure

Nov 02, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in Scorched 3D. The ComsMessageHandler.cpp component fails to validate command names resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Gavin Camp	Scorched 3D	39.1
		39
		38.x
		37.x
		36.x

References

Bugtraq ID: 15292
Secunia Advisory ID: 17423 17549
CVE ID: 2005-3487 (see also: NVD)
Related OSVDB ID: 20465 20466 20467 20469
FrSIRT Advisory: ADV-2005-2288
Other Advisory URL: http://aluigi.altervista.org/adv/scorchbugs-adv.txt
http://www.gentoo.org/security/en/glsa/glsa-200511-12.xml
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0070.html
Vendor URL: http://www.scorched3d.co.uk

Credit

Luigi Auriemma - aluigiautistici.org - http://aluigi.altervista.org

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Gavin Camp

Scorched 3D

References

Credit