https://www.exploit-db.com/exploits/23755
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200412-167

包括GhostRecon1.4及其早期版本，DesertSiege和TheSumofallFears1.1.1.0及其早期版本在内的多个红色风暴网页游戏不能正确检查某个函数的返回值。远程攻击者可以借助包含带有错误长度值的文本字符串数据包导致服务拒绝（挂起）。

source: http://www.securityfocus.com/bid/9738/info

The Ghost Recon Game Engine has been reported prone to a denial of service vulnerability. When handling text strings, the Ghost Recon Game Engine employs a 32-bit integer string size prefix in order to monitor the size of the string. It has been reported that when an invalid size value is supplied an exception will be triggered causing a system wide denial of service.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/23755.rar

来源:XF
名称:redstorm-games-dos(15305)
链接:http://xforce.iss.net/xforce/xfdb/15305
来源:www.zone-h.org
链接:http://www.zone-h.org/advisories/read/id=4038
来源:BUGTRAQ
名称:20040224RemotecrashinGhostReconengine
链接:http://www.securityfocus.com/archive/1/355051
来源:aluigi.altervista.org
链接:http://aluigi.altervista.org/adv/grboom-adv.txt
来源:BID
名称:9738
链接:http://www.securityfocus.com/bid/9738