Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in Live for Speed 0.5X10 and earlier allows remote authenticated users to cause a denial of service (client crash) and possibly execute arbitrary code via a long skin name.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Live for Speed皮肤名称远程栈溢出漏洞
Vulnerability Description
Live for Speed是一款流行的赛车游戏。 Live for Speed的实现上存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制其他游戏客户端。 Live for Speed允许玩家使用不同的汽车外观皮肤。当玩家加入到服务器确定进入赛道后,客户端会向服务器发送一个包含有所有赛车信息(包括设置、颜色、皮肤等)的报文,其中包含有皮肤名称的字段为16字节,其他客户端没有执行正确检查便读取了这个字段并连接到赛车名称后以便从本地皮肤文件夹中加载所需的DDS文件,导致栈溢出。
CVSS Information
N/A
Vulnerability Type
N/A