cbcvebase.
CVE-2004-1500
published 2004-12-31

CVE-2004-1500: Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service (application…

PriorityP411low2.1CVSS 2.0
AVLACLAuNCNINAP
EXPLOIT
EPSS
1.88%
76.9th percentile
Format string vulnerability in the Lithtech engine, as used in multiple games, allows remote authenticated users to cause a denial of service (application crash) via format string specifiers in (1) a nickname or (2) a message.

Affected

14 ranges
VendorProductVersion rangeFixed in
freeform_interactivepurge_jihad
monolith_productionsalien_versus_predator
monolith_productionsblood
monolith_productionscontract_jack
monolith_productionsfirst_encounter_assault_recon<= 1.08
monolith_productionsglobal_operations
monolith_productionsglobal_operations
monolith_productionskiss_psycho_circus
monolith_productionslegends_of_might_and_magic
monolith_productionsno_one_lives_forever
monolith_productionsno_one_lives_forever
monolith_productionssanity
monolith_productionsshogo
monolith_productionstron
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.