Skip to content

Robocode Arbitrary Code Execution

Moderate severity GitHub Reviewed Published May 1, 2022 to the GitHub Advisory Database • Updated Sep 21, 2023

Package

maven net.sf.robocode:robocode.core (Maven)

Affected versions

< 1.5.1

Patched versions

1.5.1

Description

The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method.

References

Published by the National Vulnerability Database Dec 15, 2007
Published to the GitHub Advisory Database May 1, 2022
Reviewed Sep 21, 2023
Last updated Sep 21, 2023

Severity

Moderate

EPSS score

1.573%
(88th percentile)

Weaknesses

CVE ID

CVE-2007-6382

GHSA ID

GHSA-xh22-fw58-56pp

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.