cbcvebase.
CVE-2007-5249
published 2007-10-06

CVE-2007-5249: Multiple buffer overflows in the logging function in the Unreal engine, as used by America's Army and America's Army Special Forces 2.8.2 and earlier, when…

PriorityP415medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
1.65%
73.5th percentile
Multiple buffer overflows in the logging function in the Unreal engine, as used by America's Army and America's Army Special Forces 2.8.2 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to cause a denial of service (daemon crash) via a long (1) PB_Y packet to the YPG server on UDP port 1716 or (2) PB_U packet to UCON on UDP port 1716, different vectors than CVE-2007-4442. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain.

Affected

2 ranges
VendorProductVersion rangeFixed in
americasarmyamerica_s_army<= 2.8.2
americasarmyamerica_s_army_special_forces<= 2.8.2
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.