← back
CVE-2004-2099

CVE-2004-2099

EPSS 4.3%
Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (servers) to execute arbitrary code via long (1) gamename, (2) gamever, (3) hostname, (4) gametype, (5) mapname or (6) gamemode commands.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/147unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://aluigi.altervista.org/adv/nfshp2cbof-adv.txthttp://marc.info/?l=bugtraq&m=107479094508691&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/14909http://www.securityfocus.com/bid/9473