CVE Vulnerabilities

CVE-2003-1432

Published: Dec 31, 2003 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.

Affected Software

Name Vendor Start Version End Version
Unreal_engine Epic_games 226f 226f
Unreal_engine Epic_games 433 433
Unreal_engine Epic_games 436 436
Unreal_tournament_2003 Epic_games 2199_linux 2199_linux
Unreal_tournament_2003 Epic_games 2199_win32 2199_win32
Unreal_tournament_2003 Epic_games demo_version_2206_linux demo_version_2206_linux
Unreal_tournament_2003 Epic_games demo_version_2206_win32 demo_version_2206_win32

References