The multiplayer engine in Wesnoth 1.2.x before 1.2.7 and 1.3.x before 1.3.9 allows remote servers to cause a denial of service (crash) via a long message with multibyte characters that can produce an invalid UTF-8 string after it is truncated, which triggers an uncaught exception, involving the truncate_message function in server/server.cpp. NOTE: this issue affects both clients and servers.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-10-11T10:00:00
Updated: 2017-07-28T12:57:01
Reserved: 2007-07-20T00:00:00
Link: CVE-2007-3917
JSON object: View
NVD Information
Status : Modified
Published: 2007-10-11T10:17:00.000
Modified: 2017-07-29T01:32:37.223
Link: CVE-2007-3917
JSON object: View
Redhat Information
No data.
CWE