CVE-2006-1275

Name: CVE-2006-1275
Creator: NVD / NIST
Published: 2006-03-19T11:06:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.44%

Last modified Jun 16, 2026

CVE-2006-1275 is a vulnerability of currently unknown severity. GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attribute in a PLAYER XML tag, (2) joining with a long ID attribute or non-trailing ' characters, which causes a <none> name to be assigned, and then disconnecting, or (3) a long CDATA message attribute, which prevents closing tags from being added to the string.. EPSS estimates a 3.44% chance of exploitation in the next 30 days.

Description

GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of service (client disconnect) via inputs that produce malformed XML, including (1) trailing ' (apostrophe) character on the ID attribute in a PLAYER XML tag, (2) joining with a long ID attribute or non-trailing ' characters, which causes a <none> name to be assigned, and then disconnecting, or (3) a long CDATA message attribute, which prevents closing tags from being added to the string.

Metrics

EPSS Probability

3.44%

87.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-399

Affected Software

Vendor	Product	Versions
Ggz Gaming Zone	Ggz Gaming Zone	0.0.12

References

http://aluigi.altervista.org/adv/ggzcdos-adv.txtExploit, Vendor Advisory
http://secunia.com/advisories/19212Vendor Advisory
http://www.osvdb.org/23848
http://www.securityfocus.com/bid/17094Exploit
http://www.vupen.com/english/advisories/2006/0935Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25164
http://aluigi.altervista.org/adv/ggzcdos-adv.txtExploit, Vendor Advisory
http://secunia.com/advisories/19212Vendor Advisory
http://www.osvdb.org/23848
http://www.securityfocus.com/bid/17094Exploit
http://www.vupen.com/english/advisories/2006/0935Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25164

Timeline

Published: Mar 19, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-1275?

How severe is CVE-2006-1275?

Severity scoring for CVE-2006-1275 is pending analysis. The EPSS model estimates a 3.44% probability of exploitation in the next 30 days.

How do I fix CVE-2006-1275?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-1275?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST