RSS   Vulnerabilities for 'Call of duty'   RSS

2019-04-19
 
CVE-2018-20817

CWE-119
 

 
SV_SteamAuthClient in various Activision Infinity Ward Call of Duty games before 2015-08-11 is missing a size check when reading authBlob data into a buffer, which allows one to execute code on the remote target machine when sending a steam authentication request. This affects Call of Duty: Modern Warfare 2, Call of Duty: Modern Warfare 3, Call of Duty: Ghosts, Call of Duty: Advanced Warfare, Call of Duty: Black Ops 1, and Call of Duty: Black Ops 2.

 
2006-09-27
 
CVE-2006-5058

 

 
Buffer overflow in (1) Call of Duty 1.5b and earlier, (2) Call of Duty United Offensive 1.51b and earlier, and (3) Call of Duty 2 1.3 and earlier allows remote attackers to execute arbitrary code via a long map argument to the "callvote map" command.

 
2005-05-02
 
CVE-2005-0983

 

 
Quake 3 engine, as used in multiple games, allows remote attackers to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.

 
2004-09-05
 
CVE-2004-1664

 

 
Call of Duty 1.4 and earlier allows remote attackers to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.

 

 >>> Vendor: Activision 6 Products
Call of duty
Call of duty united offensive
Return to castle wolfenstein
Call of duty 2
Call of duty 4
Call of duty elite


Copyright 2019, cxsecurity.com

 

Back to Top