CVE-2007-4140

Name of the Vulnerable Software and Affected Versions Live for Speed (LFS) S2 ALPHA PATCH 0.5x

Description The issue allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that contains a long car name. This is due to a buffer overflow.

Recommendations For Live for Speed (LFS) S2 ALPHA PATCH 0.5x, avoid using .mpr files with long car names until a patch is available. As a temporary workaround, consider restricting the use of .mpr files or validating the length of car names in these files to minimize the risk of exploitation.