Vulnerabilities > CVE-2007-4443 - Denial-Of-Service vulnerability in Epic Games Unreal Engine 2003/2004
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The UCC dedicated server for the Unreal engine, possibly 2003 and 2004, on Windows allows remote attackers to cause a denial of service (continuous beep and server slowdown) via a string containing many 0x07 characters in (1) a request to the images/ directory, (2) the Content-Type field, (3) a HEAD request, and possibly other unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://aluigi.org/adv/unrwebdos-adv.txt
- http://aluigi.org/poc/unrwebdos.zip
- http://secunia.com/advisories/26506
- http://securityreason.com/securityalert/3039
- http://www.securityfocus.com/archive/1/477026/100/0/threaded
- http://www.securityfocus.com/archive/1/478053/100/200/threaded
- http://www.securityfocus.com/archive/1/478064/100/200/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36103