Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20212
HistoryJul 22, 2008 - 12:00 a.m.

NULL pointer in ZDaemon 1.08.07

2008-07-2200:00:00
vulners.com
9
JSON

#######################################################################

                         Luigi Auriemma

Application: ZDaemon
http://www.zdaemon.org
Versions: <= 1.08.07
Platforms: Windows and Linux
Bug: NULL pointer
Exploitation: remote, versus server (in-game)
Date: 21 Jul 2008
Author: Luigi Auriemma
e-mail: [email protected]
web: aluigi.org

#######################################################################

1) Introduction
2) Bug
3) The Code
4) Fix

#######################################################################

===============
1) Introduction

ZDaemon is one of the most played multiplayer ports of the Doom engine
and at the same time one of the most criticized too.

#######################################################################

======
2) Bug

The ZDaemon server is affected by a NULL pointer vulnerability which
allows an attacker to crash it when a specific type of command (type 6)
is used.

The attacker needs to join the server for exploiting this bug so his IP
address must be not banned and he must know the right keyword if the
server is protected with a password.

#######################################################################

===========
3) The Code

http://aluigi.org/poc/zdaemonull.zip

#######################################################################

======
4) Fix

No fix

#######################################################################

Luigi Auriemma
http://aluigi.org
http://backup.aluigi.org
http://mirror.aluigi.org

JSON