Vulnerability Description
Format string vulnerability in dx8render.dll in Snail Game (aka Suzhou Snail Electronic Company) 5th street (aka Hot Step or High Street 5) allows remote attackers to execute arbitrary code via format string specifiers in a chat message.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hanghai | 5Th Street | All versions |
| Hanghai | High Street 5 | All versions |
| Hanghai | Hot Step | All versions |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/3982
- http://www.securityfocus.com/archive/1/493649/100/0/threaded
- http://www.securityfocus.com/bid/29928
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43370
- http://securityreason.com/securityalert/3982
- http://www.securityfocus.com/archive/1/493649/100/0/threaded
- http://www.securityfocus.com/bid/29928
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43370
FAQ
What is CVE-2008-3116?
CVE-2008-3116 is a vulnerability with a CVSS score of 10.0 (HIGH). Format string vulnerability in dx8render.dll in Snail Game (aka Suzhou Snail Electronic Company) 5th street (aka Hot Step or High Street 5) allows remote attackers to execute arbitrary code via format...
How severe is CVE-2008-3116?
CVE-2008-3116 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3116?
Check the references section above for vendor advisories and patch information. Affected products include: Hanghai 5Th Street, Hanghai High Street 5, Hanghai Hot Step.