cve/2006/CVE-2006-1236.md

CVE-2006-1236

Description

Buffer overflow in the SetUp function in socket/request.c in CrossFire 1.9.0 allows remote attackers to execute arbitrary code via a long setup sound command, a different vulnerability than CVE-2006-1010.

POC

Reference

• http://packetstormsecurity.com/files/163873/Crossfire-Server-1.0-Buffer-Overflow.html
• https://www.exploit-db.com/exploits/1582

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/Axua/CVE-2006-1236
• https://github.com/CVEDB/PoC-List
• https://github.com/CVEDB/awesome-cve-repo