28 matches found
EUVD-2007-5227
Malware in sbrugna...
EUVD-2004-1494
Malware in sbrugna...
Monolith Lithtech Game Engine Multiple Remote Format String Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/11610/info Lithtech game engine is prone to multiple remote format-string vulnerabilities because of incorrect usage of 'printf'-type functions. Format specifiers can be supplied directly to vulnerable functions from...
Lithtech Engine Memory Corruption Vulnerability
No description provided by source. Original Advisory: http://aluigi.org/adv/fearless-adv.txt Luigi Auriemma Application: Lithtech engine http://www.lithtech.com Games: any game should be affected, refer to http://en.wikipedia.org/wiki/LithtechLithtechimplementations those personally tested by me...
Lithtech Engine (new protocol) - Socket Unreacheable DoS
No description provided by source. / by Luigi Auriemma / include stdio.h include stdlib.h include string.h ifdef WIN32 include winsock.h / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h...
Monolith Lithtech Game Engine - Memory Corruption
Monolith Lithtech Game Engine - Memory Corruption source: https://www.securityfocus.com/bid/41851/info Monolith Lithtech Game Engine is prone to a memory-corruption vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, or execute arbitrary code within the conte...
Monolith Lithtech Game Engine - Memory Corruption
source: https://www.securityfocus.com/bid/41851/info Monolith Lithtech Game Engine is prone to a memory-corruption vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, or execute arbitrary code within the context of the affected application. Other attacks may...
Lithtech Engine - Memory Corruption
Original Advisory: http://aluigi.org/adv/fearless-adv.txt Luigi Auriemma Application: Lithtech engine http://www.lithtech.com Games: any game should be affected, refer to http://en.wikipedia.org/wiki/LithtechLithtechimplementations those personally tested by me are: F.E.A.R. = 1.08 F.E.A.R. 2...
Lithtech Engine - Memory Corruption
Lithtech Engine - Memory Corruption Original Advisory: http://aluigi.org/adv/fearless-adv.txt Luigi Auriemma Application: Lithtech engine http://www.lithtech.com Games: any game should be affected, refer to http://en.wikipedia.org/wiki/LithtechLithtechimplementations those personally tested by me...
CVE-2007-5247
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...
Format string
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...
CVE-2007-5247
CVE-2007-5247 describes multiple format-string vulnerabilities in the Lithtech-based engine as used by F.E.A.R. 1.08 and earlier, with PunkBuster enabled. The issue allows remote attackers to potentially execute arbitrary code or cause a denial of service via format specifiers in specific PunkBus...
CVE-2007-5247
Multiple format string vulnerabilities in the Monolith Lithtech engine, as used by First Encounter Assault Recon F.E.A.R. 1.08 and earlier, when Punkbuster PB is enabled, allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in 1 a...
Format string in F.E.A.R. 1.08 through PB
Luigi Auriemma Application: F.E.A.R. First Encounter Assault Recon http://www.whatisfear.com Versions: = 1.08 Platforms: Windows and Linux Bug: format string Exploitation: remote, versus server with Punkbuster enabled Date: 01 Oct 2007 Author: Luigi Auriemma e-mail: [email protected] web:...
CVE-2004-1500
CVE-2004-1500 : A format string vulnerability in the Lithtech engine (used in multiple games) allows remote authenticated users to cause a denial of service (application crash) by supplying format string specifiers in either a nickname or a message. Affected impact is limited to availability (par...
CVE-2004-1500
Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service application crash via format string specifiers in 1 a nickname or 2 a message...
CVE-2004-1395
The Lithtech engine, as used in 1 Contract Jack 1.1 and earlier, 2 No one lives forever 2 1.3 and earlier, 3 Tron 2.0 1.042 and earlier, 4 F.E.A.R. First Encounter Assault and Recon, and possibly other games, allows remote attackers to cause a denial of service connection refused via a UDP packet...
CVE-2004-1395
The CVE-2004-1395 entry concerns the Lithtech engine as used in several games (Contract Jack, No One Lives Forever 2, Tron 2.0, F.E.A.R., and potentially others). A remote attacker can trigger a denial of service by sending a UDP packet that causes recvfrom to produce a return code which makes th...
CVE-2004-1395
The Lithtech engine, as used in 1 Contract Jack 1.1 and earlier, 2 No one lives forever 2 1.3 and earlier, 3 Tron 2.0 1.042 and earlier, 4 F.E.A.R. First Encounter Assault and Recon, and possibly other games, allows remote attackers to cause a denial of service connection refused via a UDP packet...
CVE-2004-1500
Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service application crash via format string specifiers in 1 a nickname or 2 a message...