Lucene search

[email protected]CVE-2003-1432

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1432

2003-12-3105:00:00

CWE-94

CWE-189

[email protected]

web.nvd.nist.gov

epic games

unreal engine

remote code execution

cve-2003-1432

nvd

8.1 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.047 Low

EPSS

Percentile

92.5%

JSON

Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.

CPENameOperatorVersion
epic_games:unreal_engineepic games unreal engineeq436
epic_games:unreal_tournament_2003epic games unreal tournament 2003eq2199_linux
epic_games:unreal_tournament_2003epic games unreal tournament 2003eq2199_win32
epic_games:unreal_engineepic games unreal engineeq226f
epic_games:unreal_tournament_2003epic games unreal tournament 2003eqdemo_version_2206_linux
epic_games:unreal_engineepic games unreal engineeq433
epic_games:unreal_tournament_2003epic games unreal tournament 2003eqdemo_version_2206_win32

CPE	Name	Operator	Version
epic_games:unreal_engine	epic games unreal engine	eq	436
epic_games:unreal_tournament_2003	epic games unreal tournament 2003	eq	2199_linux
epic_games:unreal_tournament_2003	epic games unreal tournament 2003	eq	2199_win32
epic_games:unreal_engine	epic games unreal engine	eq	226f
epic_games:unreal_tournament_2003	epic games unreal tournament 2003	eq	demo_version_2206_linux
epic_games:unreal_engine	epic games unreal engine	eq	433
epic_games:unreal_tournament_2003	epic games unreal tournament 2003	eq	demo_version_2206_win32

References

archives.neohapsis.com/archives/bugtraq/2003-02/0063.html

archives.neohapsis.com/archives/bugtraq/2003-02/0142.html

archives.neohapsis.com/archives/bugtraq/2003-05/0142.html

www.securityfocus.com/bid/6770

www.securityfocus.com/bid/6772

exchange.xforce.ibmcloud.com/vulnerabilities/11302

exchange.xforce.ibmcloud.com/vulnerabilities/11305

exchange.xforce.ibmcloud.com/vulnerabilities/12012

8.1 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.047 Low

EPSS

Percentile

92.5%

JSON

Related for CVE-2003-1432

nessus1