Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4257

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4257
Last Modified 15 Nov 2008 01:56:23
Published 08 Aug 2007 07:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4257

Summary

Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than CVE-2007-4140.

Vulnerable Systems

Application

  • Lfs Live For Speed Sp1

  • Lfs Live For Speed Sp2


References

MILW0RM - 4263

MILW0RM - 4262

OSVDB - 46769

OSVDB - 46768

BID - 25208

BID - 25206


Last Updated: 27 May 2016 10:45:49