CVE-2005-3065

MultiTheftAuto < 0.5_patch_1 - Denial of Service via Crafted Command 40

Title source: llm
STIX 2.1

Description

MultiTheftAuto 0.5 patch 1 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted command 40 that causes a -1 length to be used and triggers an out-of-bounds read.

References (3)

Core 3
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/16926/
Exploit, Vendor Advisory mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2005-September/037384.html
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/26

Scores

EPSS 0.0170
EPSS Percentile 74.6%

Details

CWE
CWE-119
Status published
Products (1)
multitheftauto/multitheftauto < 0.5_patch_1
Published Sep 27, 2005
Tracked Since Feb 18, 2026