Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
BID:30152
Info
Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
| Bugtraq ID: | 30152 |
| Class: | Unknown |
| CVE: |
CVE-2008-3169 CVE-2008-3168 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 09 2008 12:00AM |
| Updated: | Jul 06 2016 02:17PM |
| Credit: | The vendor reported these issues. |
| Vulnerable: |
WolfPack Development Empire Server 4.3.14 |
| Not Vulnerable: |
WolfPack Development Empire Server 4.3.15 |
Discussion
Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
Empire Server is prone to multiple unspecified vulnerabilities:
- Multiple unspecified buffer-overflow vulnerabilities.
- An information-disclosure vulnerability in the Pseudo Random Number Generator (PRNG).
Attackers can exploit these issues to execute arbitrary code within the context of the affected application, crash the application, and obtain sensitive information.
Versions prior to Empire Server 4.3.15 are vulnerable.
Empire Server is prone to multiple unspecified vulnerabilities:
- Multiple unspecified buffer-overflow vulnerabilities.
- An information-disclosure vulnerability in the Pseudo Random Number Generator (PRNG).
Attackers can exploit these issues to execute arbitrary code within the context of the affected application, crash the application, and obtain sensitive information.
Versions prior to Empire Server 4.3.15 are vulnerable.
Exploit / POC
Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
Solution:
The vendor has released Empire Server 4.3.15 to address these issues. Please see the references for more information.
WolfPack Development Empire Server 4.3.14
Solution:
The vendor has released Empire Server 4.3.15 to address these issues. Please see the references for more information.
WolfPack Development Empire Server 4.3.14
-
WolfPack Development empire-info-html-4.3.15.tar.gz
http://downloads.sourceforge.net/empserver/empire-info-html-4.3.15.tar .gz?modtime=1211120598&big_mirror=0
References
Empire Server Prior to 4.3.15 Multiple Unspecified Vulnerabilities
References:
References:
- Empire Server Version 4.3.15 Release Notes (Wolfpack Development)
- Vendor Homepage (Wolfpack Development)