Half-Life Server 1.1/3.1 - New Player Flood Denial of Service

Author: Auriemma Luigi
type: dos
platform: multiple
port: 
date_added: 2002-06-20 
date_updated: 2012-10-01 
verified: 1 
codes: CVE-2002-0964;OSVDB-5001 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/5076/info

Half-Life is a popular game distributed and maintained by Valve Software. It includes features that allow users to game locally, or in distributed network environments. Valve Software also distributes a dedicated server product.

A denial of service vulnerability has been reported in some versions of the Half-Life server. A remote party may create a large number of new users on a specific server through spoofing the connection conversation. As servers contain a set limit on the maximum number of players, server resources will be exhausted, and legitimate players will not be allowed to join the game.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/21572.zip