Epic Games Unreal Engine 436 - Client Unreal URL Denial of Service

Author: Auriemma Luigi
type: dos
platform: multiple
port: 
date_added: 2003-02-05  
date_updated: 2012-10-24  
verified: 1  
codes: CVE-2003-1431;OSVDB-15397  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22223.txt  

source: https://www.securityfocus.com/bid/6774/info

t has been reported that a memory corruption bug exists in games based on the Unreal Engine. Under some circumstances, when the game client connects to a server using a excessive length Unreal URL it may be possible for the malformed URL to write over sensitive areas of stack memory causing the client to crash.

unreal://(261 chars)[EIP_byte2][EIP_byte1]
unreal://(258 chars)