Main Vulnerability Database Vulnerabilities #VU41021

Input validation error in Teeworlds - CVE-2014-9351

Published: December 10, 2014 / Updated: August 9, 2020

Vulnerability identifier: #VU41021

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2014-9351

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Teeworlds

Affected software:
Teeworlds

Detailed vulnerability description

The vulnerability allows a remote non-authenticated attacker to #BASIC_IMPACT#.

engine/server/server.cpp in Teeworlds 0.6.x before 0.6.3 allows remote attackers to read memory and cause a denial of service (crash) via unspecified vectors.

How to mitigate CVE-2014-9351

Install update from vendor's website.

Sources

http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145172.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145173.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145650.html
http://www.securityfocus.com/bid/71301
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770514
https://github.com/teeworlds/teeworlds/commit/a766cb44bcffcdb0b88e776d01c5ee1323d44f85
https://www.teeworlds.com/?page=news&id=11200

Input validation error in Teeworlds - CVE-2014-9351

Detailed vulnerability description

How to mitigate CVE-2014-9351

Sources

Please verify you're human