CVE-2004-0278
Last modified
CVE-2004-0278 is a vulnerability of currently unknown severity. Ratbag game engine, as used in products such as Dirt Track Racing, Leadfoot, and World of Outlaws Spring Cars, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet that specifies the length of data to read and then sends a second TCP packet that contains less data than specified, which causes Ratbag to repeatedly check the socket for more data.. EPSS estimates a 1.71% chance of exploitation in the next 30 days.
Description
Ratbag game engine, as used in products such as Dirt Track Racing, Leadfoot, and World of Outlaws Spring Cars, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet that specifies the length of data to read and then sends a second TCP packet that contains less data than specified, which causes Ratbag to repeatedly check the socket for more data.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ratbag | Dirt Track Racing | 1.0.3 |
| Ratbag | Dirt Track Racing | 2.0 |
| Ratbag | Dirt Track Racing Australia | All versions |
| Ratbag | Dirt Track Racing Sprint Cars | All versions |
| Ratbag | Leadfoot | All versions |
| Ratbag | World Of Outlaws Sprint Cars | All versions |
References
- http://www.securityfocus.com/bid/9644Exploit, Vendor Advisory
- http://www.securityfocus.com/bid/9644Exploit, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-0278?
How severe is CVE-2004-0278?
How do I fix CVE-2004-0278?
Are you affected by CVE-2004-0278?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST