CVE-2017-20205

CVE-2017-20205 affects Valve’s Source SDK (source-sdk-2013). The ragdoll model parsing logic contains a stack-based buffer overflow in the tokenizer function nexttoken. When ParseKeyValue processes a collisionpair rule longer than 256 bytes, the szToken stack buffer can overflow and overwrite the...

EUVD-2017-18920

Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...

CVE-2017-20205 Valve Source SDK Stack-Based Buffer Overflow RCE

Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...

Source SDK 安全漏洞

Source SDK is an open source computer game by Valve Software. A security vulnerability exists in Source SDK that stems from a stack-based buffer overflow in the ragdoll model parsing logic, which could lead to remote code execution...

Source game remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

Valve's Source SDK contains a buffer overflow vulnerability, which results in the client and server can execute arbitrary code. This vulnerability in the shot and the player when triggered, which can lead to load a specific ragdoll modelragdoll model. A plurality of Source game in 2017 6 November...