CVE-2008-7011

Name of the Vulnerable Software and Affected Versions Unreal Engine versions used in Unreal Tournament 3 1.3, Unreal Tournament 2003, Unreal Tournament 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops

Description The issue allows remote authenticated users to cause a denial of service, resulting in a server exit. This is achieved through multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set.

Recommendations For the affected versions of Unreal Engine used in Unreal Tournament 3 1.3, Unreal Tournament 2003, Unreal Tournament 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, consider restricting multiple file downloads from the server as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.