Description
America's Army (aka AA or Army Game Project) 2.8.3.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted UDP packet, probably involving a VoiceIndex value that is outside of the range specified by VOICE_MAX_CHATTERS.
Affected products
- americasarmy / america's_army2.8.3.1
- americasarmy / america's_army1.0.0 – 1.0.0
- americasarmy / america's_army1.0.1 – 1.0.1
- americasarmy / america's_army1.1.1 – 1.1.1
- americasarmy / america's_army1.2.0 – 1.2.0
- americasarmy / america's_army1.2.1 – 1.2.1
- americasarmy / america's_army1.3.0 – 1.3.0
- americasarmy / america's_army1.4.0 – 1.4.0
- americasarmy / america's_army1.5.0 – 1.5.0
- americasarmy / america's_army1.6.0 – 1.6.0
- americasarmy / america's_army1.7.0 – 1.7.0
- americasarmy / america's_army1.9.0 – 1.9.0
- americasarmy / america's_army2.0.0 – 2.0.0
- americasarmy / america's_army2.0.0 – 2.0.0
- americasarmy / america's_army2.1.0 – 2.1.0
- americasarmy / america's_army2.2.0 – 2.2.0
- americasarmy / america's_army2.2.1 – 2.2.1
- americasarmy / america's_army2.3.0 – 2.3.0
- americasarmy / america's_army2.4.0 – 2.4.0
- americasarmy / america's_army2.5.0 – 2.5.0
- americasarmy / america's_army2.6.0 – 2.6.0
- americasarmy / america's_army2.7.0 – 2.7.0
- americasarmy / america's_army2.8.0 – 2.8.0
- americasarmy / america's_army2.8.1 – 2.8.1
- americasarmy / america's_army2.8.2 – 2.8.2
- americasarmy / america's_army2.8.3 – 2.8.3
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/31353
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/44152
- MISChttp://www.securityfocus.com/archive/1/495061/100/0/threaded
- MISChttp://aluigi.altervista.org/adv/armynchia-adv.txt
- MISChttp://aluigi.org/poc/armynchia.zip
- MISChttp://www.securityfocus.com/bid/30519