Vavoom Multiple Remote Vulnerabilities

Vavoom Multiple Remote Vulnerabilities

The following proofs of concept and exploit code are available:

- For the format-string vulnerability, an attacker sends a chat message containing '%n%n%n%n%s' string.

- For the buffer-overflow vulnerability, the attacker opens the 'vavoom\basev\doom2\config.cfg' file, and adds the following lines:'alias bof "say aaa...(992_'a's)...aaa" name ''aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'' '

- For the denial-of-service vulnerability, the attacker sends a packet to UDP port 26000 containing the following hexadecimal bytes: 80 02 ff 00