Denial of Service Vulnerability in Epic Games Unreal Engine
CVE-2003-1432

Currently unrated

Key Information:

Vendor: Epic Games
Status: Unreal Engine; Unreal Tournament 2003
Vendor: CVE Published:; 31 December 2003

What is CVE-2003-1432?

Epic Games Unreal Engine versions up to 436 are susceptible to an exploit that allows remote attackers to trigger a denial of service. They can do this by sending specially crafted packets containing negative size values, leading to excessive CPU consumption and possible crashes. Such values are misinterpreted during memory allocation as large positive numbers, creating vulnerabilities that may also allow arbitrary code execution.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/11302

vdb-entryx_refsource_XF

https://exchange.xforce.ibmcloud.com/vulnerabilities/11305

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/6770

vdb-entryx_refsource_BID

EPSS Score

18% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 22, 2007
Vulnerability published
Dec 31, 2003

JSON