Vulnerability Name:

CVE-2007-3917 (CCN-37047)

Assigned:2007-10-09
Published:2007-10-09
Updated:2017-07-29
Summary:The multiplayer engine in Wesnoth 1.2.x before 1.2.7 and 1.3.x before 1.3.9 allows remote servers to cause a denial of service (crash) via a long message with multibyte characters that can produce an invalid UTF-8 string after it is truncated, which triggers an uncaught exception, involving the truncate_message function in server/server.cpp.
Note: this issue affects both clients and servers.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-134
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2007-3917

Source: OSVDB
Type: UNKNOWN
41711

Source: CCN
Type: SA27137
Wesnoth UTF-8 Denial of Service Vulnerability

Source: SECUNIA
Type: Vendor Advisory
27137

Source: SECUNIA
Type: Vendor Advisory
27218

Source: SECUNIA
Type: Vendor Advisory
27241

Source: CONFIRM
Type: UNKNOWN
http://svn.gna.org/viewcvs/wesnoth/tags/1.2.7/changelog?rev=20982&view=download

Source: CCN
Type: SVN Repositories at Gna!
wesnoth: tags/1.2.7/changelog

Source: DEBIAN
Type: UNKNOWN
DSA-1386

Source: DEBIAN
Type: DSA-1386
wesnoth -- programming error

Source: CCN
Type: OSVDB ID: 41711
Wesnoth Multieplayer Engine server/server.cpp Malformed UTF-8 String Remote DoS

Source: BID
Type: UNKNOWN
25995

Source: CCN
Type: BID-25995
Wesnoth Client UTF-8 Remote Denial of Service Vulnerability

Source: VUPEN
Type: Vendor Advisory
ADV-2007-3449

Source: CCN
Type: Battle for Wesnoth Web site
Wesnoth

Source: CONFIRM
Type: UNKNOWN
http://www.wesnoth.org/forum/viewtopic.php?p=256618

Source: CONFIRM
Type: UNKNOWN
http://www.wesnoth.org/forum/viewtopic.php?t=18188

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=324841

Source: XF
Type: UNKNOWN
wesnoth-utf8-dos(37047)

Source: XF
Type: UNKNOWN
wesnoth-utf8-dos(37047)

Source: FEDORA
Type: UNKNOWN
FEDORA-2007-2496

Vulnerable Configuration:Configuration 1:
  • cpe:/a:wesnoth:wesnoth:1.2:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.4:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.5:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.7:*:*:*:*:*:*:*
  • OR cpe:/a:wesnoth:wesnoth:1.3.8:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:20407
    P
    DSA-1386-1 wesnoth
    2014-06-23
    oval:org.debian:def:1386
    V
    programming error
    2007-10-15
    BACK
    wesnoth wesnoth 1.2
    wesnoth wesnoth 1.2.1
    wesnoth wesnoth 1.2.2
    wesnoth wesnoth 1.2.3
    wesnoth wesnoth 1.2.4
    wesnoth wesnoth 1.2.5
    wesnoth wesnoth 1.2.6
    wesnoth wesnoth 1.3.1
    wesnoth wesnoth 1.3.2
    wesnoth wesnoth 1.3.3
    wesnoth wesnoth 1.3.4
    wesnoth wesnoth 1.3.5
    wesnoth wesnoth 1.3.6
    wesnoth wesnoth 1.3.7
    wesnoth wesnoth 1.3.8