header-logo
Suggest Exploit
vendor:
MUD Server
by:
7.5
CVSS
HIGH
Format-String Vulnerabilities
CWE
Product Name: MUD Server
Affected Version From: Dawn of Time 1.69s beta4
Affected Version To: Dawn of Time 1.69r
Patch Exists:
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Dawn of Time MUD Server Multiple Format-String Vulnerabilities

The Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a user running the application. Failed attacks will likely cause denial-of-service conditions.

Mitigation:

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25944/info

Dawn of Time MUD server is prone to multiple format-string vulnerabilities.

Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a user running the application. Failed attacks will likely cause denial-of-service conditions.

These issues affect Dawn of Time 1.69s beta4 and 1.69r; other versions may also be affected. 

http://%n%n%n%n%n:%n%n%n%n%n@www.example.com:4001/locked