Vulnerabilities > CVE-2004-1805 - Remote Format String vulnerability in Epic Games Unreal Engine 226F/433/436

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

epic-games

exploit available

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Format string vulnerability in games using the Epic Games Unreal Engine 436 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in class names.

Vulnerable Configurations

Part	Description	Count
Application	Epic_Games Epic Games Unreal Engine 226F Epic Games Unreal Engine 433 Epic Games Unreal Engine 436	3

Exploit-Db

description	Epic Games Unreal Tournament Server 436.0 Engine Remote Format String Vulnerability. CVE-2004-1805. Dos exploits for multiple platform
id	EDB-ID:23799
last seen	2016-02-02
modified	2004-03-10
published	2004-03-10
reporter	Luigi Auriemma
source	https://www.exploit-db.com/download/23799/
title	Epic Games Unreal Tournament Server 436.0 - Engine Remote Format String Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References