4 matches found
EUVD-2017-18920
Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...
CVE-2017-20205
CVE-2017-20205 affects Valveās Source SDK (source-sdk-2013). The ragdoll model parsing logic contains a stack-based buffer overflow in the tokenizer function nexttoken. When ParseKeyValue processes a collisionpair rule longer than 256 bytes, the szToken stack buffer can overflow and overwrite the...
CVE-2017-20205 Valve Source SDK Stack-Based Buffer Overflow RCE
Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...
PT-2025-42216
Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...