PT-2019-8755 · Epic Games+1 · Unreal Engine+1

Mauricio Corrêa

Publicado

2019-07-10

Atualizado

2021-05-10

CVE-2018-10531

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions America's Army Proving Grounds (affected versions not specified)

Description An issue was discovered in the America's Army Proving Grounds platform for the Unreal Engine, where sending a false packet via UDP can cause the application server to respond with several bytes. This gives the possibility of DoS amplification and can even be used in DDoS attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2018-10531

Produtos afetados

America'S Army Proving Grounds

Unreal Engine

PT-2019-8755 · Epic Games+1 · Unreal Engine+1

CVE-2018-10531

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4