CVE-2007-4531 Information

Description

Soldat game server 1.4.2 and earlier and dedicated server 2.6.2 and earlier allows remote attackers to cause a client denial of service (crash) via (1) a long string to the file transfer port or (2) a long chat message or (3) a server denial of service (continuous beep and slowdown) via a string containing many 0x07 or other control characters to the file transfer port.

Reference

http://aluigi.altervista.org/adv/soldatdos-adv.txt http://aluigi.org/poc/soldatdos.zip http://secunia.com/advisories/26564 http://www.securityfocus.com/archive/1/477624/100/0/threaded http://www.securityfocus.com/bid/25426 https://exchange.xforce.ibmcloud.com/vulnerabilities/36230 https://exchange.xforce.ibmcloud.com/vulnerabilities/36231