Vulnerabilities > CVE-2008-7011 - Resource Management Errors vulnerability in multiple products

047910
CVSS 4.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
digital-extreme
epic-games
groove-games
human-head-studios
red-mercury
whiptail-interactive
CWE-399
exploit available
NVD
Published: 2009-08-19
Updated: 2018-10-11

Summary

The Unreal engine, as used in Unreal Tournament 3 1.3, Unreal Tournament 2003 and 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, allows remote authenticated users to cause a denial of service (server exit) via multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set.

Vulnerable Configurations

Part Description Count
Application
Digital_Extreme
1
Application
Epic_Games
3
Application
Groove_Games
1
Application
Human_Head_Studios
1
Application
Red_Mercury
1
Application
Whiptail_Interactive
1

Common Weakness Enumeration (CWE)

Exploit-Db

descriptionUnreal Engine 'UnChan.cpp' Failed Assertion Remote Denial of Service Vulnerability. CVE-2008-7011. Dos exploits for multiple platform
idEDB-ID:32386
last seen2016-02-03
modified2008-09-16
published2008-09-16
reporterLuigi Auriemma
sourcehttps://www.exploit-db.com/download/32386/
titleUnreal Engine 'UnChan.cpp' Failed Assertion Remote Denial of Service Vulnerability

References