Vulnerability Description
Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in (1) a PB_Y packet to the YPG server or (2) a PB_U packet to UCON. NOTE: this issue might be in Punkbuster itself, but there are insufficient details to be certain.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Id Software | Doom 3 | <= 1.3.1 |
| Id Software | Quake 4 | <= 1.4.2 |
| Take2Games | Prey | <= 1.3 |
Related Weaknesses (CWE)
References
- http://aluigi.altervista.org/adv/d3engfspb-adv.txtExploit
- http://aluigi.org/poc/d3engfspb.zipExploit
- http://secunia.com/advisories/27002Vendor Advisory
- http://secunia.com/advisories/27023Vendor Advisory
- http://secunia.com/advisories/27036Vendor Advisory
- http://securityreason.com/securityalert/3196
- http://www.securityfocus.com/archive/1/481229/100/0/threaded
- http://www.securityfocus.com/bid/25893
- http://www.vupen.com/english/advisories/2007/3333
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36899
- http://aluigi.altervista.org/adv/d3engfspb-adv.txtExploit
- http://aluigi.org/poc/d3engfspb.zipExploit
- http://secunia.com/advisories/27002Vendor Advisory
- http://secunia.com/advisories/27023Vendor Advisory
- http://secunia.com/advisories/27036Vendor Advisory
FAQ
What is CVE-2007-5248?
CVE-2007-5248 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple format string vulnerabilities in the ID Software Doom 3 engine, as used by Doom 3 1.3.1 and earlier, Quake 4 1.4.2 and earlier, and Prey 1.3 and earlier, when Punkbuster (PB) is enabled, allo...
How severe is CVE-2007-5248?
CVE-2007-5248 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5248?
Check the references section above for vendor advisories and patch information. Affected products include: Id Software Doom 3, Id Software Quake 4, Take2Games Prey.