Vulnerability Details CVE-2008-6703
Stack-based buffer overflow in the IPureServer::_Recieve function in S.T.A.L.K.E.R.: Shadow of Chernobyl 1.0006 and earlier allows remote attackers to execute arbitrary code via a compressed 0x39 packet, which is decompressed by the NET_Compressor::Decompress function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.172
EPSS Ranking 94.6%
CVSS Severity
CVSS v2 Score 10.0
References
- http://aluigi.altervista.org/adv/stalker39x-adv.txt
- http://osvdb.org/46626
- http://secunia.com/advisories/30891
- http://www.securityfocus.com/archive/1/493765
- http://www.securityfocus.com/bid/29997
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43454
- http://aluigi.altervista.org/adv/stalker39x-adv.txt
- http://osvdb.org/46626
- http://secunia.com/advisories/30891
- http://www.securityfocus.com/archive/1/493765
- http://www.securityfocus.com/bid/29997
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43454
Products affected by CVE-2008-6703
-
cpe:2.3:a:stalker-game:s.t.a.l.k.e.r.:_shadow_of_chernobyl