Remote / Network Access,
Local / Remote,
Loss of Integrity
A remote overflow exists in dopewars. The dopewars server fails to handle user data safely resulting in a format string overflow. With a specially crafted request, an attacker can cause the server to treat user-supplied data as a format string resulting in a loss of integrity.
Upgrade to version 1.5.12 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.