Buffer overflow in the UGameEngine::UpdateConnectingMessage function in the Unreal engine 1, 2, and 2.5, as used in multiple games including Unreal Tournament 2004, Unreal tournament 2003, Postal 2, Raven Shield, and SWAT4, when downloads are enabled, allows remote attackers to execute arbitrary code via a long LEVEL field in a WELCOME response to a download request.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-07-12T17:00:00
Updated: 2024-08-07T02:39:37.985Z
Reserved: 2010-07-12T00:00:00
Link: CVE-2010-2702
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-07-12T17:30:03.187
Modified: 2024-11-21T01:17:13.083
Link: CVE-2010-2702
Redhat
No data.