Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7011

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2008-7011
Last Modified 21 Aug 2009 12:00:00
Published 19 Aug 2009 06:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-7011

Summary

The Unreal engine, as used in Unreal Tournament 3 1.3, Unreal Tournament 2003 and 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, allows remote authenticated users to cause a denial of service (server exit) via multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set.

Vulnerable Systems

Application

  • Digital Extreme Pariah

  • Epic Games Unreal Tournament 2003

  • Epic Games Unreal Tournament 2004

  • Epic Games Unreal Tournament 3

  • Groove Games Warpath

  • Human Head Studios Dead Mans Hand

  • Red Mercury Shadow Ops

  • Whiptail Interactive Postal 2


References

BID - 31205

BUGTRAQ - 20080916 Failed assertion in the Unreal engine

OSVDB - 48293


Last Updated: 27 May 2016 10:49:26