CyberSec.Space Logo
Back to CVE Browser

CVE-2012-5645

HIGH
7.5
CVSS Severity Score
EPSS Score0.1420%
EPSS Percentile10.35th
PublishedDec 30, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A denial of service flaw was found in the way the server component of Freeciv before 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consumption.

Affected Platforms (CPE)

πŸ“¦
Freeciv

Freeciv

< 2.3.4
πŸ’»
Fedoraproject

Fedora

= 16
πŸ’»
Fedoraproject

Fedora

= 17
πŸ’»
Fedoraproject

Fedora

= 18

References & Advisories

πŸ”— http://lists.fedoraproject.org/pipermail/package-announce/2013-January/095378.html
πŸ”— http://lists.fedoraproject.org/pipermail/package-announce/2013-January/095381.html
πŸ”— http://lists.fedoraproject.org/pipermail/package-announce/2013-January/096391.html
πŸ”— http://www.openwall.com/lists/oss-security/2012/12/18/5
πŸ”— http://www.openwall.com/lists/oss-security/2012/12/22/4
πŸ”— http://www.openwall.com/lists/oss-security/2012/12/30/11
πŸ”— http://www.openwall.com/lists/oss-security/2012/12/30/8
πŸ”— http://www.openwall.com/lists/oss-security/2012/12/31/2

Related Vulnerabilities

CVE-2010-244510.0

freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenari...

CVE-2006-39137.5

Buffer overflow in Freeciv 2.1.0-beta1 and earlier, and SVN 15 Jul 2006 and earlier, allows remote attackers to cause a denial of ...

CVE-2012-60837.5

Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet.

CVE-2006-00475.0

packets.c in Freeciv 2.0 before 2.0.8 allows remote attackers to cause a denial of service (server crash) via crafted packets with...