CVE-2007-6041

Rigs of Rods <0.33d SP1 - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6041. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes a remote buffer overflow vulnerability in Rigs of Rods 0.33d and prior versions, where insufficient bounds checking on user-supplied data can lead to arbitrary code execution or denial of service. The reference links to a binary exploit but does not include actual exploit code.

Description

Buffer overflow in the Sequencer::queueMessage function in sequencer.cpp in the server in Rigs of Rods (RoR) before 0.33d SP1 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code by sending a nickname, then a vehicle name in a MSG2_USE_VEHICLE message, in which the combined length triggers the overflow.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdosmultiple

https://www.exploit-db.com/exploits/30779

View Code ZIP pw:eip

The provided text describes a remote buffer overflow vulnerability in Rigs of Rods 0.33d and prior versions, where insufficient bounds checking on user-supplied data can lead to arbitrary code execution or denial of service. The reference links to a binary exploit but does not include actual exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Rigs of Rods <= 0.33d

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK