CVE-2004-1855

Dark Age of Camelot <1.68 - Info Disclosure

Title source: llm

Description

Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Todd Chapman · cremotemultiple

https://www.exploit-db.com/exploits/23873

View Code ZIP pw:eip

References (5)

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/9960

[Exploit, Vendor Advisory] http://capnbry.net/daoc/advisory20040323/

[Various Sources] http://lists.netsys.com/pipermail/full-disclosure/2004-March/019212.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/15597

[Mailing List] http://marc.info/?l=bugtraq&m=108016932816707&w=2

Scores

EPSS 0.0415

EPSS Percentile 88.7%

Details

Status published

Products (8)

mythic_entertainment/dark_age_of_camelot 1.60

mythic_entertainment/dark_age_of_camelot 1.61

mythic_entertainment/dark_age_of_camelot 1.62

mythic_entertainment/dark_age_of_camelot 1.63

mythic_entertainment/dark_age_of_camelot 1.65

mythic_entertainment/dark_age_of_camelot 1.66

mythic_entertainment/dark_age_of_camelot 1.67

mythic_entertainment/dark_age_of_camelot 1.68

Published Mar 23, 2004

Tracked Since Feb 18, 2026