Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than CVE-2007-4140.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Live_for_speed | Lfs | sp1 (including) | sp1 (including) |
| Live_for_speed | Lfs | sp2 (including) | sp2 (including) |
References
- http://osvdb.org/46768
- http://osvdb.org/46769
- http://www.securityfocus.com/bid/25206
- http://www.securityfocus.com/bid/25208
- https://www.exploit-db.com/exploits/4262
- https://www.exploit-db.com/exploits/4263
- http://osvdb.org/46768
- http://osvdb.org/46769
- http://www.securityfocus.com/bid/25206
- http://www.securityfocus.com/bid/25208
- https://www.exploit-db.com/exploits/4262
- https://www.exploit-db.com/exploits/4263