CVE-2006-0771

Format string vulnerability in PunkBuster 1.180 and earlier, as used by Soldier of Fortune II and possibly other games, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifiers in invalid cvar values, which are not properly handled when the server kicks the player and records the reason.

Weakness

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

Affected Software

Name	Vendor	Start Version	End Version
Punkbuster	Even_balance	*	1.180 (including)

Potential Mitigations

https://cwe.mitre.org/data/definitions/135.html
https://cwe.mitre.org/data/definitions/67.html

References

http://aluigi.altervista.org/adv/sof2pbfs-adv.txt
http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0372.html
http://secunia.com/advisories/18917
http://securityreason.com/securityalert/448
http://www.securityfocus.com/archive/1/425286/100/0/threaded
http://www.securityfocus.com/bid/16703
https://exchange.xforce.ibmcloud.com/vulnerabilities/24792
http://aluigi.altervista.org/adv/sof2pbfs-adv.txt
http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0372.html
http://secunia.com/advisories/18917
http://securityreason.com/securityalert/448
http://www.securityfocus.com/archive/1/425286/100/0/threaded
http://www.securityfocus.com/bid/16703
https://exchange.xforce.ibmcloud.com/vulnerabilities/24792

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0771
CWE	https://cwe.mitre.org/data/definitions/134.html

Use of Externally-Controlled Format String

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References