CVE-2009-4846 Information

Description

Multiple buffer overflows in Deliantra Server before 2.82 allow remote attackers to execute arbitrary code via vectors related to (1) the command_gsay function in server/c_party.C and (2) the book implementation.

Reference

http://cvs.schmorp.de/deliantra/server/Changes?pathrev=rel-2_82 http://cvs.schmorp.de/deliantra/server/server/c_party.C?r1=1.29&r2=1.30 http://secunia.com/advisories/37317 http://www.osvdb.org/59878 http://www.osvdb.org/59879 http://www.vupen.com/english/advisories/2009/3176 https://exchange.xforce.ibmcloud.com/vulnerabilities/54205 https://exchange.xforce.ibmcloud.com/vulnerabilities/54206