|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200511-12] Scorched 3D: Multiple vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Scorched 3D: Multiple vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200511-12
(Scorched 3D: Multiple vulnerabilities)
Luigi Auriemma discovered multiple flaws in the Scorched 3D game
server, including a format string vulnerability and several buffer
overflows.
Impact
A remote attacker can exploit these vulnerabilities to crash a
game server or execute arbitrary code with the rights of the game
server user. Users not running a Scorched 3D game server are not
affected by these flaws.
Workaround
There is no known workaround at this time.
References:
http://seclists.org/lists/fulldisclosure/2005/Nov/0079.html
Solution:
The Scorched 3D package has been hard-masked until a new version
correcting these flaws is released. In the meantime, current users are
advised to unmerge the package:
# emerge --unmerge games-strategy/scorched3d
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
