header-logo
Suggest Exploit
vendor:
Ca3DE
by:
SecurityFocus
7.5
CVSS
HIGH
Format String and Denial of Service
134
CWE
Product Name: Ca3DE
Affected Version From: Before March 2004
Affected Version To: Before March 2004
Patch Exists: YES
Related CWE: N/A
CPE: a:ca3de:ca3de
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2004

Ca3DE Multiple Remote Vulnerabilities

Ca3DE is reported prone to multiple remote vulnerabilities. An attacker can exploit these issues to carry out format string and denial of service attacks. It is reported that all commands accepted by the server are affected by format string vulnerabilities. A successful attack may result in crashing the application or lead to arbitrary code execution. This may facilitate unauthorized access or privilege escalation in the context of the application. The application is also affected by a remote denial of service vulnerability.

Mitigation:

Ensure that all user-supplied input is properly validated and sanitized before being used in any command or query.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/12727/info

Ca3DE is reported prone to multiple remote vulnerabilities. An attacker can exploit these issues to carry out format string and denial of service attacks.

The following specific issues were identified:

It is reported that all commands accepted by the server are affected by format string vulnerabilities.

A successful attack may result in crashing the application or lead to arbitrary code execution. This may facilitate unauthorized access or privilege escalation in the context of the application.

The application is also affected by a remote denial of service vulnerability.

Ca3DE versions released before March 2004 are affected by these issues. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/25190.zip

Navigation

Suggest Exploit

Services By CQR

cqrsecured