CVE-2004-1216

Burut Kreed - Denial of Service

Title source: rule

Description

The scripts that handle players in Kreed 1.05 and earlier allow remote attackers to cause a denial of service (server freeze) via a long (1) nickname or (2) model type, which generates dialog boxes on the server that must be manually handled before the server continues the game.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdoswindows

https://www.exploit-db.com/exploits/672

View Code ZIP pw:eip

References (3)

[Mailing List] http://marc.info/?l=bugtraq&m=110201776207915&w=2

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/11799

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/18345

Scores

EPSS 0.0582

EPSS Percentile 90.5%

Details

Status published

Products (1)

burut/kreed 1.5

Published Jan 10, 2005

Tracked Since Feb 18, 2026