cbcvebase.
CVE-2003-1432
published 2003-12-31

CVE-2003-1432: Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code…

PriorityP430critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
7.54%
93.7th percentile
Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.

Affected

7 ranges
VendorProductVersion rangeFixed in
epic_gamesunreal_engine
epic_gamesunreal_engine
epic_gamesunreal_engine
epic_gamesunreal_tournament_2003
epic_gamesunreal_tournament_2003
epic_gamesunreal_tournament_2003
epic_gamesunreal_tournament_2003
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.