SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Game)  >   mah-jong Vendors:   Bradfield, J. C.
mah-jong Buffer Overflow Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1007654
SecurityTracker URL:  http://securitytracker.com/id/1007654
CVE Reference:   CVE-2003-0705, CVE-2003-0706   (Links to External Site)
Updated:  Dec 1 2003
Original Entry Date:  Sep 8 2003
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network

Version(s): 1.4
Description:   Two vulnerabilities were reported in the mah-jong game. A remote user can execute arbitrary code on the target server. A remote user can also cause denial of service conditions.

It is reported that a remote user can send a specially crafted command to trigger a buffer overflow and execute arbitrary code on the mah-jong server. The code will run with the privileges of the user running the mah-jong server process.

It is also reported that a remote user can send a specially crafted command to exploit a flaw in the processing of escaped characters and cause the system to enter a continuous loop. The mah-jong server will stop responding to subsequent commands.

Impact:   A remote user can execute arbitrary code on the target server with the privileges of the mah-jong server process.

A remote user can cause the mah-jong server to stop responding to commands.

Solution:   No solution was available at the time of this entry for the upstream version.

[Editor's note: A fix is available for the Debian Linux version -- see the Message History for a separate alert regarding the Debian fix.]

Cause:   Boundary error, Input validation error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Sep 8 2003 (Debian Issues Fix) mah-jong Buffer Overflow Lets Remote Users Execute Arbitrary Code
Debian has released a fix.



 Source Message Contents

Subject:  mah-jong


 >  mah-jong (1.4-2) stable-security; urgency=high
 >
 >    * Fix remotely exploitable buffer overflows (CAN-2003-0705).
 >    * Fix denial of service due to broken handling of escaping (CAN-2003-0706).


Debian reports:

 >  - CAN-2003-0705 (buffer overflow)
 >
 >    This vulnerability could be exploited by a remote attacker to
 >    execute arbitrary code with the privileges of the user running the
 >    mah-jong server.

 > - - CAN-2003-0706 (denial of service)
 >
 >   This vulnerability could be exploited by a remote attacker to cause
 >   the mah-jong server to enter a tight loop and stop responding to
 >   commands.



 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC