CVE-2007-4140
published 2007-08-03CVE-2007-4140: Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that…
PriorityP425medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
3.89%
88.9th percentile
Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that contains a long car name.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lfs | live_for_speed | — | — |
| lfs | live_for_speed | — | — |
| lfs | live_for_speed_s2 | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9wjw-6987-wfmj: Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a
ghsa_unreviewed·2022-05-01·CVSS 6.8
CVE-2007-4257 [MEDIUM] GHSA-9wjw-6987-wfmj: Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a
Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than CVE-2007-4140.
GHSA
GHSA-r26j-h88h-p76w: Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0
ghsa_unreviewed·2022-05-01
CVE-2007-4140 [MEDIUM] GHSA-r26j-h88h-p76w: Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0
Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that contains a long car name.
No detection rules found.
No writeups or analysis indexed.
http://www.securityfocus.com/bid/25168http://www.securityfocus.com/bid/25208https://exchange.xforce.ibmcloud.com/vulnerabilities/35729https://www.exploit-db.com/exploits/4252http://www.securityfocus.com/bid/25168http://www.securityfocus.com/bid/25208https://exchange.xforce.ibmcloud.com/vulnerabilities/35729https://www.exploit-db.com/exploits/4252
2007-08-03
Published