Buffer Overflow Vulnerability in Unreal Tournament 3 by Epic Games
CVE-2008-3409

Currently unrated

Key Information:

Vendor: Epic Games
Status: Unreal Tournament 3
Vendor: CVE Published:; 31 July 2008

What is CVE-2008-3409?

A buffer overflow vulnerability exists in Unreal Tournament 3 versions up to 1.3beta4 that allows remote attackers to exploit the game by sending a specially crafted UDP packet. This packet can manipulate the size field to exceed the allocated buffer, resulting in memory corruption and causing the game daemon to crash. Under certain conditions, this vulnerability could also allow attackers to execute arbitrary code on the affected system, posing significant security risks to gamers and servers alike.

References

http://aluigi.altervista.org/adv/ut3mendo-adv.txt

x_refsource_MISC

http://aluigi.org/poc/ut3mendo.zip

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/44105

vdb-entryx_refsource_XF

EPSS Score

25% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 31, 2008
Vulnerability Reserved
Jul 31, 2008

JSON