CVE-2008-7011

The Unreal engine, as used in Unreal Tournament 3 1.3, Unreal Tournament 2003 and 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, allows remote authenticated users to cause a denial of service (server exit) via multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set.

Published: Aug 19, 2009
Updated: Apr 13, 2023
CVE: CVE-2008-7011
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:N/A:P

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
epic_games / unreal_tournament	2004	2004.x
human_head_studios / dead_mans_hand	-	-
epic_games / unreal_tournament	2003	2003.x
digital_extreme / pariah	-	-
red_mercury / shadow_ops	-	-
groove_games / warpath	-	-
whiptail_interactive / postal	2	2.x
epic_games / unreal_tournament	3-1.3	3-1.3.x

http://archives.neohapsis.com/archives/fulldisclosure/2008-09/0321.html
http://osvdb.org/48293
http://www.securityfocus.com/archive/1/496399/100/0/threaded
http://www.securityfocus.com/bid/31205

Vulnerability Database

289,697

CVE-2008-7011