CVE-2004-1207

Serioussam Seriousengine - Denial of Service

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1207. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This exploit targets a DoS vulnerability in Alpha Black Zero <= 1.04 by sending malformed UDP packets to crash the server. It first queries the server for information and then sends a series of crafted packets to trigger the crash.

Description

The Serious engine, as used in (1) Alpha Black Zero Intrepid Protocol 1.04 and earlier, (2) Nitro family, and (3) Serious Sam Second Encounter 1.07 allows remote attackers to cause a denial of service (server crash) via a large number of UDP join requests that exceeds the maximum player limit, as originally reported for Alpha Black Zero.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdoswindows

https://www.exploit-db.com/exploits/605

View Code ZIP pw:eip

This exploit targets a DoS vulnerability in Alpha Black Zero <= 1.04 by sending malformed UDP packets to crash the server. It first queries the server for information and then sends a series of crafted packets to trigger the crash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Alpha Black Zero <= 1.04

No auth needed

Prerequisites: Network access to the target server · UDP port 29850 (or custom) accessible

MITRE ATT&CK