CVE-2008-6712

Name of the Vulnerable Software and Affected Versions Crysis versions 1.1.1.6156 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a long HTTP request. This request triggers a NULL pointer dereference in the HTTP/XML-RPC service.

Recommendations For versions 1.1.1.6156 and earlier, consider disabling the HTTP/XML-RPC service as a temporary workaround until a patch is available. Restrict access to the service to minimize the risk of exploitation.