exploitDog

CVE-2019-20893

Опубликовано: 30 июн. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Низкий

Описание

An issue was discovered in Activision Infinity Ward Call of Duty Modern Warfare 2 through 2019-12-11. PartyHost_HandleJoinPartyRequest has a buffer overflow vulnerability and can be exploited by using a crafted joinParty packet. This can be utilized to conduct arbitrary code execution on a victim's machine.

Ссылки

https://github.com/BlastsMods/JoinPartyRCE
Third Party Advisory
https://github.com/BlastsMods/JoinPartyRCE
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:activision:call_of_duty_modern_warfare_2:*:*:*:*:*:*:*:*

Версия до 2019-12-11 (включая)

EPSS

Процентиль: 74%

0.00853

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-120

Связанные уязвимости

GHSA-w526-pr9q-g5j8

github

больше 3 лет назад

An issue was discovered in Activision Infinity Ward Call of Duty Modern Warfare 2 through 2019-12-11. PartyHost_HandleJoinPartyRequest has a buffer overflow vulnerability and can be exploited by using a crafted joinParty packet. This can be utilized to conduct arbitrary code execution on a victim's machine.

EPSS

Процентиль: 74%

0.00853

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-120