BFCommand & Control Server Manager拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109029 漏洞类型 设计错误
发布时间 2005-08-29 更新时间 2006-04-07
CVE编号 CVE-2005-2791 CNNVD-ID CNNVD-200509-013
漏洞平台 Multiple CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/26210
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200509-013
|漏洞详情
BFCommand&ControlServerManager是游戏Battlefield1942(BFCC)、BattlefieldVietnam(BFVCC)和Battlefield2(BF2CC)的服务程序管理器。BFCommand&ControlServerManagerBFCC1.22_A及更早版本,BFVCC2.14_B及更早版本,攻击者如果通过一系列的连接服务器但不发送login命令就断开的操作,就可以使服务器拒绝服务。
|漏洞EXP
source: http://www.securityfocus.com/bid/14690/info

BFCC and BFVCC server managers are vulnerable to multiple remote vulnerabilities.

The first two issues are login bypass vulnerabilities. These issues allow remote, anonymous attackers to gain access to the affected server process.

The third issue is a design error whereby the server application implements access controls, privileges, and other commands in the client-side of the connection. This allows remote attackers to gain full administrative access to the affected application.

The fourth issue is a remote denial of service vulnerability. This issue is due to a failure of the application to properly handle multiple connections.

These vulnerabilities allow remote attackers to gain administrative access in the affected server application, and to deny further access to the application. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/26210.zip
|参考资料

来源:XF
名称:bfcommand-connection-dos(22060)
链接:http://xforce.iss.net/xforce/xfdb/22060
来源:BID
名称:14690
链接:http://www.securityfocus.com/bid/14690
来源:SECUNIA
名称:16629
链接:http://secunia.com/advisories/16629/
来源:BUGTRAQ
名称:20050829MultiplevulnerabilitiesinBFCommand&ControlforBattlefield
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=112534155318828&w=2
来源:MISC
链接:http://aluigi.altervista.org/adv/bfccown-adv.txt