Vulnerability Details CVE-2009-3924
Buffer overflow in pbsv.dll, as used in Soldier of Fortune II and possibly other applications when Even Balance PunkBuster 1.728 or earlier is enabled, allows remote attackers to cause a denial of service (application server crash) and possibly execute arbitrary code via a long restart packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 85.2%
CVSS Severity
CVSS v2 Score 9.3
References
- http://aluigi.altervista.org/adv/sof2pbbof-adv.txt
- http://aluigi.org/poc/sof2pbbof.zip
- http://secunia.com/advisories/36221
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52400
- http://aluigi.altervista.org/adv/sof2pbbof-adv.txt
- http://aluigi.org/poc/sof2pbbof.zip
- http://secunia.com/advisories/36221
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52400
Products affected by CVE-2009-3924
-
cpe:2.3:a:punkbuster:punkbuster:*
-
cpe:2.3:a:punkbuster:punkbuster:1.272
-
cpe:2.3:a:punkbuster:punkbuster:1.457
-
cpe:2.3:a:punkbuster:punkbuster:1.458
-
cpe:2.3:a:punkbuster:punkbuster:1.641
-
cpe:2.3:a:punkbuster:punkbuster:1.642
-
cpe:2.3:a:punkbuster:punkbuster:1.718
-
cpe:2.3:a:punkbuster:punkbuster:1.723
-
cpe:2.3:a:raven_software:soldier_of_fortune_2:*