Remote Code Execution Vulnerability in Warcraft III: The Frozen Throne by Blizzard Entertainment
CVE-2009-4768

Currently unrated

Key Information:

Vendor: Blizzard
Status: Warcraft 3 The Frozen Throne
Vendor: CVE Published:; 20 April 2010

What is CVE-2009-4768?

An unspecified vulnerability exists in the JASS script interpreter within Warcraft III: The Frozen Throne, affecting version 1.24b and earlier. This vulnerability allows user-assisted remote attackers to execute arbitrary code through a specially crafted custom map. Attackers can exploit this vulnerability by enticing users to load the malicious map, potentially compromising their system and gaining unauthorized access. Users are advised to exercise caution and review security measures to protect against such attacks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/54324

vdb-entryx_refsource_XF

http://forums.battle.net/thread.html?topicId=16888549346

x_refsource_CONFIRM

http://www.securityfocus.com/bid/37052

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 20, 2010
Vulnerability Reserved
Apr 20, 2010