PT-2019-12072 · Teeworlds+2 · Teeworlds+2

0N3M4Ns4Rmy

Published

2019-04-05

Updated

2019-08-24

CVE-2019-10879

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Teeworlds version 0.7.2

Description The issue is caused by an integer overflow in the CDataFileReader::Open() function, located in engine/shared/datafile.cpp. This overflow can lead to a buffer overflow, potentially resulting in remote code execution. The problem arises from the mishandling of size-related multiplications.

Recommendations For Teeworlds version 0.7.2, consider restricting access to the CDataFileReader::Open() function until a patch is available. As a temporary workaround, avoid using the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

RCE

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALT-PU-2019-1909

ALT-PU-2019-1934

CVE-2019-10879

OPENSUSE-SU-2019:1793-1

OPENSUSE-SU-2019:1999-1

OPENSUSE-SU-2019_1793-1

Affected Products

Alt Linux

Suse

Teeworlds

PT-2019-12072 · Teeworlds+2 · Teeworlds+2

CVE-2019-10879

Weakness Enumeration

Related Identifiers

Affected Products

References · 22