Описание
Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:crytek:crysis:1.1.1.5879:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.11688
Средний
6 Medium
CVSS2
Дефекты
CWE-134
Связанные уязвимости
github
почти 4 года назад
Format string vulnerability in the cryactio function in Crysis 1.1.1.5879 allows remote authenticated users to execute arbitrary code via format string specifiers in the user name, which is triggered when the game character is killed.
EPSS
Процентиль: 93%
0.11688
Средний
6 Medium
CVSS2
Дефекты
CWE-134