EIP-2026-102570

PRE-CVE

BZFlag 1.7 g0 - Reconnect Denial of Service

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102570. PoCs published by russian code molester.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service (DoS) vulnerability in BZFlag by flooding the server's reconnect port with excessive data, leading to CPU/memory exhaustion and potential segmentation faults. It first reads the reconnect port from the initial handshake, then floods the reconnect port and the original port with random data.

Description

BZFlag 1.7 g0 - Reconnect Denial of Service

Exploits (1)

exploitdb WORKING POC VERIFIED

by russian code molester · cdoslinux

https://www.exploit-db.com/exploits/22624

View Code ZIP pw:eip

This exploit demonstrates a denial-of-service (DoS) vulnerability in BZFlag by flooding the server's reconnect port with excessive data, leading to CPU/memory exhaustion and potential segmentation faults. It first reads the reconnect port from the initial handshake, then floods the reconnect port and the original port with random data.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: BZFlag 1.7g0 (and likely older versions)

No auth needed

Prerequisites: Network access to the target BZFlag server · Knowledge of the target server's IP and port

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026