CVE-2007-1371

Publication date 10 March 2007

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Description

Multiple buffer overflows in Conquest 8.2a and earlier (1) allow local users to gain privileges by querying a metaserver that sends a long server entry processed by metaGetServerList and allow remote metaservers to execute arbitrary code via a long server entry processed by metaGetServerList; (2) allow attackers to have an unknown impact by exceeding the configured number of metaservers; and allow remote attackers to corrupt memory via a SP_CLIENTSTAT packet with certain values of (3) unum or (4) snum, different vulnerabilities than CVE-2003-0933.

Status

Package Ubuntu Release Status
conquest 9.10 karmic
Fixed 8.2b-1
9.04 jaunty
Fixed 8.2b-1
8.10 intrepid
Fixed 8.2b-1
8.04 LTS hardy
Fixed 8.2b-1
7.10 gutsy
Fixed 8.2b-1
7.04 feisty Ignored end of life, was needed
6.10 edgy Ignored end of life, was needed
6.06 LTS dapper Ignored end of life

References

Other references

Access our resources on patching vulnerabilities