CVE-2009-2547 Information

Description

Integer underflow in Armed Assault (aka ArmA) 1.14 and earlier and 1.16 beta and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service (crash) via a VoIP over Network (VON) packet to port 2305 with a negative packet_size value which triggers a buffer over-read.

Reference

http://aluigi.altervista.org/adv/armadioz-adv.txt http://secunia.com/advisories/35900 http://www.vupen.com/english/advisories/2009/1951 https://exchange.xforce.ibmcloud.com/vulnerabilities/51820