CVE-2004-0608
First published: Wed Jun 30 2004(Updated: )
The Unreal Engine, as used in DeusEx 1.112fm and earlier, Devastation 390 and earlier, Mobile Forces 20000 and earlier, Nerf Arena Blast 1.2 and earlier, Postal 2 1337 and earlier, Rune 107 and earlier, Tactical Ops 3.4.0 and earlier, Unreal 1 226f and earlier, Unreal II XMP 7710 and earlier, Unreal Tournament 451b and earlier, Unreal Tournament 2003 2225 and earlier, Unreal Tournament 2004 before 3236, Wheel of Time 333b and earlier, and X-com Enforcer, allows remote attackers to execute arbitrary code via a UDP packet containing a secure query with a long value, which overwrites memory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arush Devastation | =390.0 | |
| Dreamforge Tnn Outdoors Pro Hunter | ||
| Unreal Engine | =226f | |
| Unreal Engine | =433 | |
| Unreal Engine | =436 | |
| Unreal Tournament | =451b | |
| Unreal Tournament | =2199_linux | |
| Unreal Tournament | =2199_macos | |
| Unreal Tournament | =2199_win32 | |
| Unreal Tournament | =2225_macos | |
| Unreal Tournament | =2225_win32 | |
| Unreal Tournament | =macos | |
| Unreal Tournament | =win32 | |
| Tactical Ops (Infogrames) | =3.4 | |
| X-COM: Enforcer | ||
| Deus Ex | =1.112_fm | |
| Nerf Arena Blast | =1.2 | |
| Rage Software Mobile Forces | =20000.0 | |
| Robert Jordan's Wheel of Time | =333.0b | |
| Postal 2 | =1337 | |
| Gentoo Linux | =1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2004-0608?
CVE-2004-0608 has a medium severity rating due to potential unauthorized access vulnerabilities.
How do I fix CVE-2004-0608?
To fix CVE-2004-0608, update the affected Unreal Engine games to the latest version that has addressed this vulnerability.
Which software is affected by CVE-2004-0608?
CVE-2004-0608 affects various Unreal Engine-based games including DeusEx 1.112fm, Unreal Tournament 2003, and Postal 2 1337.
What exploitation methods are associated with CVE-2004-0608?
CVE-2004-0608 can be exploited through unauthorized access leading to potential game disruption or data exposure.
Is CVE-2004-0608 still a threat to modern gaming?
While most affected software versions are outdated, CVE-2004-0608 remains a threat for users still running vulnerable versions in unsupported environments.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/remedy
- agent/severity
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/arush
- canonical/arush devastation
- version/arush devastation/390.0
- vendor/dreamforge
- canonical/dreamforge tnn outdoors pro hunter
- vendor/epic games
- canonical/unreal engine
- version/unreal engine/226f
- version/unreal engine/433
- version/unreal engine/436
- canonical/unreal tournament
- version/unreal tournament/451b
- version/unreal tournament/2199_linux
- version/unreal tournament/2199_macos
- version/unreal tournament/2199_win32
- version/unreal tournament/2225_macos
- version/unreal tournament/2225_win32
- version/unreal tournament/macos
- version/unreal tournament/win32
- vendor/infogrames
- canonical/tactical ops (infogrames)
- version/tactical ops (infogrames)/3.4
- canonical/x-com: enforcer
- vendor/ion storm
- canonical/deus ex
- version/deus ex/1.112_fm
- vendor/nerf arena blast
- canonical/nerf arena blast
- version/nerf arena blast/1.2
- vendor/rage software
- canonical/rage software mobile forces
- version/rage software mobile forces/20000.0
- vendor/robert jordan
- canonical/robert jordan's wheel of time
- version/robert jordan's wheel of time/333.0b
- vendor/running with scissors
- canonical/postal 2
- version/postal 2/1337
- vendor/gentoo
- canonical/gentoo linux
- version/gentoo linux/1.4