First published: Tue Aug 21 2007(Updated: )
The UCC dedicated server for the Unreal engine, possibly 2003 and 2004, on Windows allows remote attackers to cause a denial of service (continuous beep and server slowdown) via a string containing many 0x07 characters in (1) a request to the images/ directory, (2) the Content-Type field, (3) a HEAD request, and possibly other unspecified vectors.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Epic Games Unreal Engine | =2003 | |
Epic Games Unreal Engine | =2004 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2007-4443 has a severity level of medium, primarily causing a denial of service.
CVE-2007-4443 allows remote attackers to cause a denial of service by sending a specific string with multiple 0x07 characters.
CVE-2007-4443 affects the Unreal engine versions 2003 and 2004.
CVE-2007-4443 can be exploited through crafted requests to the images/ directory or by manipulating the Content-Type field.
Administrators can mitigate CVE-2007-4443 by filtering input to prevent strings with excessive 0x07 characters from reaching the server.