Vulnerability Details CVE-2008-3396
Unreal Tournament 2004 (UT2004) 3369 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a certain sequence of malformed packets.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.065
EPSS Ranking 90.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://aluigi.altervista.org/adv/ut2004null-adv.txt
- http://aluigi.org/poc/ut2004null.zip
- http://secunia.com/advisories/31266
- http://www.securityfocus.com/archive/1/494935/100/0/threaded
- http://www.securityfocus.com/bid/30427
- http://www.vupen.com/english/advisories/2008/2259/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44107
- http://aluigi.altervista.org/adv/ut2004null-adv.txt
- http://aluigi.org/poc/ut2004null.zip
- http://secunia.com/advisories/31266
- http://www.securityfocus.com/archive/1/494935/100/0/threaded
- http://www.securityfocus.com/bid/30427
- http://www.vupen.com/english/advisories/2008/2259/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44107
Products affected by CVE-2008-3396
-
cpe:2.3:a:epic_games:unreal_tournament_2004:*
-
cpe:2.3:a:epic_games:unreal_tournament_2004:3120
-
cpe:2.3:a:epic_games:unreal_tournament_2004:3334