CVSS: 6.5EPSS: 2%CPEs: 8EXPL: 3CVE-2008-7011 – Unreal Engine - 'UnChan.cpp' Failed Assertion Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-7011
19 Aug 2009 — The Unreal engine, as used in Unreal Tournament 3 1.3, Unreal Tournament 2003 and 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, allows remote authenticated users to cause a denial of service (server exit) via multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set. El motor de Unreal, el utilizado en Unreal Tournament v3 1.3, Unreal Tournament 2003 y 2004, Dead Man's Hand, Pariah, WarPath, Postal2, y Shadow Ops, permite a usu... • https://www.exploit-db.com/exploits/32386 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 3%CPEs: 2EXPL: 2CVE-2008-7015 – Unreal Engine 3 - Failed Memory Allocation Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-7015
19 Aug 2009 — Unreal engine 3, as used in Unreal Tournament 3 1.3, Frontlines: Fuel of War 1.1.1, and other products, allows remote attackers to cause a denial of service (server exit) via a packet with a large length value that triggers a memory allocation failure. El motor de Unreal v3, utilizado en Unreal Tournament v3 1.3, Frontlines: Fuel of War v1.1.1, y otros productos, permite a atacantes remotos producir una denegación de servicio (salida del servidor) a través de un paquete con un valor de entero largo que inic... • https://www.exploit-db.com/exploits/32362 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 15%CPEs: 4EXPL: 3CVE-2008-4243 – Unreal Tournament 3 1.3 - Directory Traversal
https://notcve.org/view.php?id=CVE-2008-4243
25 Sep 2008 — Directory traversal vulnerability in ImageServer (aka UTImageServer) in WebAdmin before 1.7 for Epic Games Unreal Tournament 3 (UT3) 1.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI. Vulnerabilidad de salto de directorio en ImageServer (también conocida como UTImageServer) en WebAdmin anterior a v1.7 para Epic Games Unreal Tournament 3 (UT3) v1.3, permite a atacantes remotos leer archivos de su elección a través de .."punto punto) en la URI. • https://www.exploit-db.com/exploits/6506 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 24%CPEs: 3EXPL: 1CVE-2008-3409 – Unreal Tournament 3 - Memory Corruption (Denial of Service)
https://notcve.org/view.php?id=CVE-2008-3409
31 Jul 2008 — Buffer overflow in Unreal Tournament 3 1.3beta4 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a UDP packet containing a large value in a certain size field, followed by a data string of that size, aka attack 1 in ut3mendo.c. Desbordamiento de búfer en Unreal Tournament 3 1.3beta4 y anteriores, permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria o caída de demonio) o posiblemente,... • https://www.exploit-db.com/exploits/32127 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 1CVE-2008-3410
https://notcve.org/view.php?id=CVE-2008-3410
31 Jul 2008 — Unreal Tournament 3 1.3beta4 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a UDP packet in which the value of a certain size field is greater than the total packet length, aka attack 2 in ut3mendo.c. Unreal Tournament 3 1.3beta4 y anteriores permite a atacantes remotos provocar una denegación de servicio (referencia a puntero nulo o caída del demonio) mediante un paquete UDP en el que el valor del tamaño de cierto campo es superior a la long... • http://aluigi.altervista.org/adv/ut3mendo-adv.txt • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 6%CPEs: 3EXPL: 1CVE-2008-3396 – Unreal Tournament 2004 - Null Pointer Remote Denial of Service
https://notcve.org/view.php?id=CVE-2008-3396
31 Jul 2008 — Unreal Tournament 2004 (UT2004) 3369 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a certain sequence of malformed packets. Juego Unreal Tournament 2004 (UT2004) 3369 y anteriores, permite a atacantes remotos provocar una denegación de servicio (referencia a puntero nulo o caída de demonio) a través de ciertas secuencias de paquetes mal formados. • https://www.exploit-db.com/exploits/32125 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 3%CPEs: 7EXPL: 3CVE-2004-1958 – Epic Games Unreal Tournament Engine 3 - UMOD Manifest.INI Arbitrary File Overwrite
https://notcve.org/view.php?id=CVE-2004-1958
31 Dec 2004 — Directory traversal vulnerability in manifest.ini in Unreal engine allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in a UMOD (Unreal MOD) file. • https://www.exploit-db.com/exploits/24041 •
CVSS: 10.0EPSS: 60%CPEs: 21EXPL: 4CVE-2004-0608 – Unreal Tournament 2004 (Linux) - 'secure' Remote Overflow
https://notcve.org/view.php?id=CVE-2004-0608
30 Jun 2004 — The Unreal Engine, as used in DeusEx 1.112fm and earlier, Devastation 390 and earlier, Mobile Forces 20000 and earlier, Nerf Arena Blast 1.2 and earlier, Postal 2 1337 and earlier, Rune 107 and earlier, Tactical Ops 3.4.0 and earlier, Unreal 1 226f and earlier, Unreal II XMP 7710 and earlier, Unreal Tournament 451b and earlier, Unreal Tournament 2003 2225 and earlier, Unreal Tournament 2004 before 3236, Wheel of Time 333b and earlier, and X-com Enforcer, allows remote attackers to execute arbitrary code via... • https://www.exploit-db.com/exploits/16848 •
CVSS: 10.0EPSS: 18%CPEs: 7EXPL: 2CVE-2003-1432
https://notcve.org/view.php?id=CVE-2003-1432
31 Dec 2003 — Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file. • http://archives.neohapsis.com/archives/bugtraq/2003-02/0063.html • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1507
https://notcve.org/view.php?id=CVE-2002-1507
18 Mar 2003 — Unreal Tournament 2003 (ut2003) clients and servers allow remote attackers to cause a denial of service via malformed messages containing a small number of characters to UDP ports 7778 or 10777. Los servidores y clientes de Unreal Tournament 2003 (ut2003) permiten a atacantes remotos causar una denegación de servicio mediante mensajes malformados conteniendo un pequeño número de caractéres enviados a los puertos UDP 7778 o 10777. • http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0116.html •