RSS   Vulnerabilities for 'NET6'   RSS

2014-02-10
 
CVE-2011-4093

CWE-190
 

 
Integer overflow in inc/server.hpp in libnet6 (aka net6) before 1.3.14 might allow remote attackers to hijack connections and gain privileges as other users by making a large number of connections until the overflow occurs and an ID of another user is provided.

 
 
CVE-2011-4091

CWE-287
 

 
The libobby server in inc/server.hpp in libnet6 (aka net6) before 1.3.14 does not perform authentication before checking the user name, which allows remote attackers to obtain sensitive information such as server-usage patterns by a particular user and color preferences.

 


Copyright 2024, cxsecurity.com

 

Back to Top