N/A

Multiple format string vulnerabilities in (a) OpenBOR 2.0046 and earlier, (b) Beats of Rage (BOR) 1.0029 and earlier, and (c) Horizontal Shooter BOR (HOR) 2.0000 and earlier allow remote attackers to execute code via format string specifiers in configurations used in various mod files, as demonstrated by the (1) music identifier in data/scenes/intro.txt, which is not properly handled in the update function, and (2) background identifier in data/easy/1aeasy.txt, which is not properly handled in the shutdown function.

N/A

N/A

Beats Of Rage 多个格式化字符串漏洞

(a) OpenBOR 2.0046 及之前版本, (b) Beats of Rage (BOR) 1.0029 及之前版本, 以及 (c) Horizontal Shooter BOR (HOR) 2.0000及之前版本存在多个格式化字符串漏洞。远程攻击者可以借助用于各种mod文件的配置中的格式化字符串限定符执行代码，比如(1)update函数中未正确处理的data/scenes/intro.txt中的 music定义符，以及(2) shutdown函数中未正确处理的data/easy/1aeasy.t

N/A

N/A