CVE-2006-0047

Freeciv <2.0.8 - DoS

Title source: llm

Description

packets.c in Freeciv 2.0 before 2.0.8 allows remote attackers to cause a denial of service (server crash) via crafted packets with negative compressed size values.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdoswindows

https://www.exploit-db.com/exploits/1557

View Code ZIP pw:eip

References (11)

[Patch] http://www.securityfocus.com/bid/16975

[Third Party Advisory] http://www.gentoo.org/security/en/glsa/glsa-200603-11.xml

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2006:053

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/426866/100/0/threaded

[Vendor Advisory] http://secunia.com/advisories/19253

[Third Party Advisory] http://www.debian.org/security/2006/dsa-994

[Vendor Advisory] http://secunia.com/advisories/19227

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/0838

[Issue Tracking] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=355211

[Patch, Vendor Advisory] http://secunia.com/advisories/19120

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/25166

Scores

EPSS 0.1644

EPSS Percentile 94.9%

Details

CWE

CWE-20 CWE-399

Status published

Products (9)

freeciv/freeciv 2.0.0

freeciv/freeciv 2.0.1

freeciv/freeciv 2.0.2

freeciv/freeciv 2.0.3

freeciv/freeciv 2.0.4

freeciv/freeciv 2.0.5

freeciv/freeciv 2.0.6

freeciv/freeciv 2.0.7

freeciv/freeciv 2.0.7a

Published Mar 07, 2006

Tracked Since Feb 18, 2026