Vulnerability Name:
CVE-2009-0366 (CCN-49204)
Assigned:
2009-03-02
Published:
2009-03-02
Updated:
2009-03-21
Summary:
The uncompress_buffer function in src/server/simple_wml.cpp in Wesnoth before r33069 allows remote attackers to cause a denial of service via a large compressed WML document.
CVSS v3 Severity:
5.3 Medium
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
)
Exploitability Metrics:
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Low
CVSS v2 Severity:
4.3 Medium
(CVSS v2 Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
)
3.2 Low
(Temporal CVSS v2 Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Medium
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
4.3 Medium
(CCN CVSS v2 Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P
)
3.2 Low
(CCN Temporal CVSS v2 Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Network
Access Complexity (AC):
Medium
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
None
Integrity (I):
None
Availibility (A):
Partial
Vulnerability Type:
CWE-399
Vulnerability Consequences:
Denial of Service
References:
Source: MITRE
Type: CNA
CVE-2009-0366
Source: CONFIRM
Type: UNKNOWN
http://launchpad.net/bugs/335089
Source: CONFIRM
Type: UNKNOWN
http://launchpad.net/bugs/336396
Source: CONFIRM
Type: UNKNOWN
http://launchpad.net/bugs/cve/2009-0366
Source: OSVDB
Type: UNKNOWN
52672
Source: CONFIRM
Type: UNKNOWN
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.4.7-4/changelog
Source: CONFIRM
Type: UNKNOWN
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.5.12-1/changelog
Source: SECUNIA
Type: UNKNOWN
34236
Source: CCN
Type: SA34253
Wesnoth "simple_wml.cpp" Denial of Service Vulnerability
Source: SECUNIA
Type: UNKNOWN
34253
Source: CONFIRM
Type: UNKNOWN
http://svn.gna.org/viewcvs/wesnoth/trunk/src/server/simple_wml.cpp?rev=33069&r1=32990&r2=33069
Source: CONFIRM
Type: UNKNOWN
http://svn.gna.org/viewcvs/wesnoth/trunk/src/server/simple_wml.cpp?rev=33069&view=log
Source: DEBIAN
Type: UNKNOWN
DSA-1737
Source: DEBIAN
Type: DSA-1737
wesnoth -- several vulnerabilities
Source: CCN
Type: OSVDB ID: 52672
Wesnoth simple_wml.cpp uncompress_buffer() Function WML File Handling DoS
Source: BID
Type: UNKNOWN
34085
Source: CCN
Type: BID-34085
Wesnoth 'simple_wml.cpp' Remote Denial of Service Vulnerability
Source: CCN
Type: Wesnoth Web site
Wesnoth
Source: CCN
Type: Wesnoth Forum/BfW - Users/Release Announcements, Compiling, and Installation, Tue Feb 24, 2009 9:46
Wesnoth 1.5.11
Source: CCN
Type: Wesnoth Forum/BfW - Users/Release Announcements, Compiling, and Installation, Mon Mar 02, 2009 4:18
Security advisor for 1.4.x
Source: XF
Type: UNKNOWN
wesnoth-uncompressbuffer-dos(49204)
Source: CONFIRM
Type: UNKNOWN
https://gna.org/bugs/index.php?13037
Vulnerable Configuration:
Configuration 1
:
cpe:/a:wesnoth:wesnoth:1.0:rc:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.1:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.2:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.3:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.5:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.6:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.7:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.8:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.9:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.10:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.11:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.12:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.13:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.1.14:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.1:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.2:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.3:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.5:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.6:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.7:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.8:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.8:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.9:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.10:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.11:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.12:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.13:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.14:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.15:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.16:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.17:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.18:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.3.19:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.1:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.2:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.3:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.5:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.6:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.7:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.0:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.1:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.2:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.3:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.5:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.6:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.7:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.8:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.9:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.5.10:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:*:*:*:*:*:*:*:*
(Version <= 1.5.11)
Configuration CCN 1
:
cpe:/a:wesnoth:wesnoth:1.2.8:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.7:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.2.6:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4:*:*:*:*:*:*:*
OR
cpe:/a:wesnoth:wesnoth:1.4.7:*:*:*:*:*:*:*
AND
cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
OR
cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*
Denotes that component is vulnerable
Oval Definitions
Definition ID
Class
Title
Last Modified
oval:org.mitre.oval:def:8370
P
DSA-1737 wesnoth -- several vulnerabilities
2014-06-23
oval:org.mitre.oval:def:13652
P
DSA-1737-1 wesnoth -- several vulnerabilities
2014-06-23
oval:org.debian:def:1737
V
several vulnerabilities
2009-03-11
BACK
wesnoth
wesnoth 1.0 rc
wesnoth
wesnoth 1.1
wesnoth
wesnoth 1.1.1
wesnoth
wesnoth 1.1.2
wesnoth
wesnoth 1.1.3
wesnoth
wesnoth 1.1.4
wesnoth
wesnoth 1.1.5
wesnoth
wesnoth 1.1.6
wesnoth
wesnoth 1.1.7
wesnoth
wesnoth 1.1.8
wesnoth
wesnoth 1.1.9
wesnoth
wesnoth 1.1.10
wesnoth
wesnoth 1.1.11
wesnoth
wesnoth 1.1.12
wesnoth
wesnoth 1.1.13
wesnoth
wesnoth 1.1.14
wesnoth
wesnoth 1.2
wesnoth
wesnoth 1.2.1
wesnoth
wesnoth 1.2.2
wesnoth
wesnoth 1.2.3
wesnoth
wesnoth 1.2.4
wesnoth
wesnoth 1.2.5
wesnoth
wesnoth 1.2.6
wesnoth
wesnoth 1.2.7
wesnoth
wesnoth 1.2.8
wesnoth
wesnoth 1.3.8
wesnoth
wesnoth 1.3.9
wesnoth
wesnoth 1.3.10
wesnoth
wesnoth 1.3.11
wesnoth
wesnoth 1.3.12
wesnoth
wesnoth 1.3.13
wesnoth
wesnoth 1.3.14
wesnoth
wesnoth 1.3.15
wesnoth
wesnoth 1.3.16
wesnoth
wesnoth 1.3.17
wesnoth
wesnoth 1.3.18
wesnoth
wesnoth 1.3.19
wesnoth
wesnoth 1.4
wesnoth
wesnoth 1.4.1
wesnoth
wesnoth 1.4.2
wesnoth
wesnoth 1.4.3
wesnoth
wesnoth 1.4.4
wesnoth
wesnoth 1.4.5
wesnoth
wesnoth 1.4.6
wesnoth
wesnoth 1.4.7
wesnoth
wesnoth 1.5.0
wesnoth
wesnoth 1.5.1
wesnoth
wesnoth 1.5.2
wesnoth
wesnoth 1.5.3
wesnoth
wesnoth 1.5.4
wesnoth
wesnoth 1.5.5
wesnoth
wesnoth 1.5.6
wesnoth
wesnoth 1.5.7
wesnoth
wesnoth 1.5.8
wesnoth
wesnoth 1.5.9
wesnoth
wesnoth 1.5.10
wesnoth
wesnoth *
wesnoth
wesnoth 1.2.8
wesnoth
wesnoth 1.2.7
wesnoth
wesnoth 1.2.6
wesnoth
wesnoth 1.4
wesnoth
wesnoth 1.4.7
debian
debian linux 4.0
debian
debian linux 5.0
Denotes that component is vulnerable