Description
The client and server of Chaser 1.50 and earlier allow remote attackers to cause a denial of service (crash via exception) via a UDP packet with a length field that is greater than the actual data length, which causes Chaser to read unexpected memory.
Exploits (2)
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdosmultiple
https://www.exploit-db.com/exploits/23642
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdosmultiple
https://www.exploit-db.com/exploits/23641
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15031
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107584109420084&w=2
Exploit, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9567
Scores
EPSS
0.0956
EPSS Percentile
92.9%
Details
Status
published
Products (3)
cauldron/chaser_client
1.5
cauldron/chaser_server
1.4.9
cauldron/chaser_server
1.5
Published
Nov 23, 2004
Tracked Since
Feb 18, 2026