CVE-2007-4442

Name of the Vulnerable Software and Affected Versions Unreal engine versions possibly 2003 and 2004

Description The issue is related to a stack-based buffer overflow in the logging function of the Unreal engine, which is used in the internal web server. This allows remote attackers to cause a denial of service, resulting in an application crash, by requesting a long .gif filename in the images/ directory. The problem is associated with the conversion from Unicode to ASCII.

Recommendations For Unreal engine versions possibly 2003 and 2004, consider disabling the logging function in the internal web server as a temporary workaround to minimize the risk of exploitation. Restrict access to the images/ directory to prevent requests for long .gif filenames.