CVE-2003-1432
Last modified
CVE-2003-1432 is a vulnerability of currently unknown severity. Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.. EPSS estimates a 7.54% chance of exploitation in the next 30 days.
Description
Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Epic Games | Unreal Engine | 226f |
| Epic Games | Unreal Engine | 433 |
| Epic Games | Unreal Engine | 436 |
| Epic Games | Unreal Tournament 2003 | 2199_linux |
| Epic Games | Unreal Tournament 2003 | 2199_win32 |
| Epic Games | Unreal Tournament 2003 | demo_version_2206_linux |
| Epic Games | Unreal Tournament 2003 | demo_version_2206_win32 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2003-1432?
How severe is CVE-2003-1432?
How do I fix CVE-2003-1432?
Are you affected by CVE-2003-1432?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST