Unreal Tournament 拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115788 漏洞类型 缓冲区溢出
发布时间 2008-07-30 更新时间 2008-09-11
CVE编号 CVE-2008-3409 CNNVD-ID CNNVD-200807-499
漏洞平台 Multiple CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/32127
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200807-499
|漏洞详情
UnrealTournament是由EpicGames开发的第一人称扮演游戏。如果向游戏服务器所发送的报文中包含有16位字段指定之后数据的大小,且这个字符串大于172字节,就会触发内存破坏,允许攻击者控制各种注册表,执行恶意指令。
|漏洞EXP
source: http://www.securityfocus.com/bid/30430/info

Unreal Tournament 3 is prone to multiple remote vulnerabilities, including a denial-of-service issue and a memory-corruption issue.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application or cause the application to crash.

These issues affect the following versions:

Unreal Tournament 3 1.3beta4
Unreal Tournament 3 1.2 and prior

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/32127.zip
|参考资料

来源:XF
名称:unrealtournament3-packettype-code-execution(44105)
链接:http://xforce.iss.net/xforce/xfdb/44105
来源:BID
名称:30430
链接:http://www.securityfocus.com/bid/30430
来源:BUGTRAQ
名称:20080729MemorycorruptionandNULLpointerinUnrealTournamentIII1.2
链接:http://www.securityfocus.com/archive/1/archive/1/494929/100/0/threaded
来源:VUPEN
名称:ADV-2008-2260
链接:http://www.frsirt.com/english/advisories/2008/2260/references
来源:SECUNIA
名称:31265
链接:http://secunia.com/advisories/31265
来源:MISC
链接:http://aluigi.org/poc/ut3mendo.zip
来源:MISC
链接:http://aluigi.altervista.org/adv/ut3mendo-adv.txt