Description
Multiple Red Storm web-based games, including Ghost Recon 1.4 and earlier, Desert Siege, and The Sum of all Fears 1.1.1.0 and earlier, do not properly check return values from certain functions, which allows remote attackers to cause a denial of service (hang) via packets that contain text strings with incorrect size values.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdosmultiple
https://www.exploit-db.com/exploits/23755
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15305
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9738
Exploit mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/355051
Exploit x_refsource_misc
http://www.zone-h.org/advisories/read/id=4038
Exploit x_refsource_misc
http://aluigi.altervista.org/adv/grboom-adv.txt
Scores
EPSS
0.0421
EPSS Percentile
88.8%
Details
Status
published
Products (3)
redstorm/desert_siege
redstorm/ghost_recon
1.4
redstorm/the_sum_of_all_fears
1.1.1.0
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026