CVE-2008-3396

Description

Unreal Tournament 2004 (UT2004) 3369 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a certain sequence of malformed packets.

Affected products

• Epic Games / unreal_tournament_20043369
• Epic Games / unreal_tournament_20043120 – 3120
• Epic Games / unreal_tournament_20043334 – 3334

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/31266
• MISChttp://aluigi.altervista.org/adv/ut2004null-adv.txt
• MISChttp://www.securityfocus.com/archive/1/494935/100/0/threaded
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/2259/references
• MISChttp://aluigi.org/poc/ut2004null.zip
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/44107
• MISChttp://www.securityfocus.com/bid/30427