Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods (RoR) before 0.33d SP1 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2_USE_VEHICLE message, in which the combined length triggers the overflow.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-11-20T19:00:00

Updated: 2024-08-07T15:54:26.150Z

Reserved: 2007-11-20T00:00:00

Link: CVE-2007-6041

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-11-20T19:46:00.000

Modified: 2024-02-14T01:17:43.863

Link: CVE-2007-6041

cve-icon Redhat

No data.