← back
CVE-2007-5248

CVE-2007-5248

EPSS 7.5%
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in (1) a PB_Y packet to the YPG server or (2) a PB_U packet to UCON. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/30630unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://aluigi.altervista.org/adv/d3engfspb-adv.txthttp://aluigi.org/poc/d3engfspb.ziphttp://secunia.com/advisories/27002http://secunia.com/advisories/27023http://secunia.com/advisories/27036http://securityreason.com/securityalert/3196https://exchange.xforce.ibmcloud.com/vulnerabilities/36899http://www.securityfocus.com/archive/1/481229/100/0/threadedhttp://www.securityfocus.com/bid/25893http://www.vupen.com/english/advisories/2007/3333