Lucene search

[email protected]CVE-2014-4334

HistoryOct 03, 2022 - 4:20 p.m.

CVE-2014-4334

2022-10-0316:20:45

CWE-119

[email protected]

web.nvd.nist.gov

ubisoft rayman legends

cve-2014-4334

buffer overflow

security vulnerability

remote code execution

nvd

tcp port 1001

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.4%

JSON

Stack-based buffer overflow in Ubisoft Rayman Legends before 1.3.140380 allows remote attackers to execute arbitrary code via a long string in the “second connection” to TCP port 1001.

Affected configurations

NVD

Node

ubirayman_legendsRange≤1.2.103716

ubirayman_legendsMatch1.0.95278

ubirayman_legendsMatch1.1.100477

CPENameOperatorVersion
ubi:rayman_legendsubi rayman legendsle1.2.103716
ubi:rayman_legendsubi rayman legendseq1.0.95278
ubi:rayman_legendsubi rayman legendseq1.1.100477

CPE	Name	Operator	Version
ubi:rayman_legends	ubi rayman legends	le	1.2.103716
ubi:rayman_legends	ubi rayman legends	eq	1.0.95278
ubi:rayman_legends	ubi rayman legends	eq	1.1.100477

References

packetstormsecurity.com/files/127133/Ubisoft-Rayman-Legends-1.2.103716-Buffer-Overflow.html

www.exploit-db.com/exploits/33804

www.securityfocus.com/bid/68080

www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5187.php

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

High

0.084 Low

EPSS

Percentile

94.4%

JSON

Related for CVE-2014-4334

prion1 cvelist1 zeroscience1 nvd1