Denial of Service Vulnerability in Kreed 1.05 and Earlier: Server Freeze via Long Nickname or Model Type

CVE-2004-1216 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The scripts that handle players in Kreed 1.05 and earlier allow remote attackers to cause a denial of service (server freeze) via a long (1) nickname or (2) model type, which generates dialog boxes on the server that must be manually handled before the server continues the game.

Learn more about our Cis Benchmark Audit For Server Software.