CVE-2005-0369

MEDIUM

Armagetron < 0.2.6.0 - Improper Array Index Validation

Title source: rule

Description

Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to cause a denial of service (application crash) via a packet with a large (1) descriptor ID or (2) claim_id, which exceeds the boundaries of an array.

Exploits (1)

exploitdb WORKING POC

cdoswindows

https://www.exploit-db.com/exploits/810

View Code ZIP pw:eip

References (1)

Core 1

Core References

Third Party Advisory mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=110811699206052&w=2

Scores

CVSS v3 5.3

EPSS 0.0692

EPSS Percentile 91.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-129

Status published

Products (2)

armagetronad/armagetron < 0.2.6.0

armagetronad/armagetron_advanced < 0.2.7.0

Published May 02, 2005

Tracked Since Feb 18, 2026