CVE-2015-4016

NameCVE-2015-4016
DescriptionThe client detection protocol in Valve Steam allows remote attackers to cause a denial of service (process crash) via a crafted response to a broadcast packet.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium

Notes

NOT-FOR-US: Related to non-free steam package.
The affected code is believed to be downloaded from Valve on startup.
http://store.steampowered.com/news/16801/
http://www.zerodayinitiative.com/advisories/ZDI-15-233/

Search for package or bug name: Reporting problems