Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods (RoR) before 0.33d SP1 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2_USE_VEHICLE message, in which the combined length triggers the overflow.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-11-20T19:00:00
Updated: 2024-08-07T15:54:26.150Z
Reserved: 2007-11-20T00:00:00
Link: CVE-2007-6041
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-11-20T19:46:00.000
Modified: 2024-02-14T01:17:43.863
Link: CVE-2007-6041
Redhat
No data.