PT-2019-8755 · Epic Games+1 · Unreal Engine+1

Mauricio Corrêa

Published

2019-07-10

Updated

2021-05-10

CVE-2018-10531

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions America's Army Proving Grounds (affected versions not specified)

Description An issue was discovered in the America's Army Proving Grounds platform for the Unreal Engine, where sending a false packet via UDP can cause the application server to respond with several bytes. This gives the possibility of DoS amplification and can even be used in DDoS attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2018-10531

Affected Products

America'S Army Proving Grounds

Unreal Engine

PT-2019-8755 · Epic Games+1 · Unreal Engine+1

CVE-2018-10531

Weakness Enumeration

Related Identifiers

Affected Products

References · 4