CVE-2003-1354

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://seclists.org/lists/bugtraq/2003/Jan/0178.html", "name": "20030122 PivX Multi-Vendor Game Server dDoS Advisory", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.pivx.com/kristovich/adv/mk001/", "name": "http://www.pivx.com/kristovich/adv/mk001/", "tags": [], "refsource": "MISC"}, {"url": "http://www.securiteam.com/securitynews/5EP0O0K8UO.html", "name": "http://www.securiteam.com/securitynews/5EP0O0K8UO.html", "tags": [], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/6636", "name": "6636", "tags": ["Exploit"], "refsource": "BID"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/11084", "name": "battlefield-udp-query-dos(11084)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple GameSpy 3D 2.62 compatible gaming servers generate very large UDP responses to small requests, which allows remote attackers to use the servers as an amplifier in DDoS attacks with spoofed UDP query packets, as demonstrated using Battlefield 1942."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-119"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2003-1354", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2003-12-31T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gamespy3d:gamespy_3d:2.62:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-29T01:29Z"}