VULHUB ™

The Half-Life StatsMe plug-in is prone to an exploitable buffer overflow condition. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute arbitrary code in the context of the server process. Exploitation may be dependant on which other plug-ins are running on the Half-Life server. Successful exploitation will allow an attacker to gain local and possibly privileged access to the host running the server.

The Half-Life StatsMe plug-in is prone to an exploitable buffer overflow condition. This issue may be exploited by an attacker who can authenticate with the rcon-password of the Half-Life server to execute arbitrary code in the context of the server process. Exploitation may be dependant on which other plug-ins are running on the Half-Life server. Successful exploitation will allow an attacker to gain local and possibly privileged access to the host running the server.