Summary
Detail | |||
---|---|---|---|
Vendor | Wesnoth | First view | 2007-12-01 |
Product | Wesnoth | Last view | 2009-03-12 |
Version | 0.6.99.3 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:wesnoth:wesnoth |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
5 | 2009-03-12 | CVE-2009-0878 | The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height. |
4.3 | 2009-03-12 | CVE-2009-0366 | The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document. |
9 | 2007-12-01 | CVE-2007-5742 | Directory traversal vulnerability in the WML engine preprocessor for Wesnoth 1.2.x before 1.2.8, and 1.3.x before 1.3.12, allows remote attackers to read arbitrary files via ".." sequences in unknown vectors. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
66% (2) | CWE-399 | Resource Management Errors |
33% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
52717 | Wesnoth src/terrain_translation.cpp read_game_map Function DoS |
52672 | Wesnoth simple_wml.cpp uncompress_buffer() Function WML File Handling DoS |
41713 | Wesnoth WML Engine Preprocessor Unspecified Traversal Arbitrary File Access |
OpenVAS Exploits
id | Description |
---|---|
2009-03-13 | Name : Debian Security Advisory DSA 1737-1 (wesnoth) File : nvt/deb_1737_1.nasl |
2009-02-27 | Name : Fedora Update for wesnoth FEDORA-2007-3986 File : nvt/gb_fedora_2007_3986_wesnoth_fc7.nasl |
2009-02-27 | Name : Fedora Update for wesnoth FEDORA-2007-3989 File : nvt/gb_fedora_2007_3989_wesnoth_fc8.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 1421-1 (wesnoth) File : nvt/deb_1421_1.nasl |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2009-03-12 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-1737.nasl - Type: ACT_GATHER_INFO |
2007-12-07 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-1421.nasl - Type: ACT_GATHER_INFO |
2007-12-04 | Name: The remote Fedora host is missing a security update. File: fedora_2007-3986.nasl - Type: ACT_GATHER_INFO |
2007-12-04 | Name: The remote Fedora host is missing a security update. File: fedora_2007-3989.nasl - Type: ACT_GATHER_INFO |