Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Format string vulnerability in Armed Assault (aka ArmA) 1.14 and earlier, and 1.16 beta, and Armed Assault II 1.02 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the (1) nickname and (2) datafile fields in a join request, which is not properly handled when logging an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bistudio Armed Assault出错消息日志导致拒绝服务漏洞
Vulnerability Description
Armed Assault(ArmA)中文译名《武装突袭》,是一个第一人称射击+军事作战模拟类游戏 。 ArmA游戏服务器在处理用户所提交的请求或报文时存在多个错误,可能导致拒绝服务或执行任意代码 。 如果远程攻击者在提交给ArmA服务器的加入游戏请求中的nickname或datafile字段指定了格式串标识符,出错消息日志在记录这些请求时就可能导致拒绝服务或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A