CVE-2003-1433

high

Description

Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows remote attackers to exhaust the player limit by joining the game multiple times.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/11304

http://www.securityfocus.com/bid/6771

http://www.pivx.com/luigi/adv/ueng-adv.txt

http://archives.neohapsis.com/archives/bugtraq/2003-02/0142.html

http://archives.neohapsis.com/archives/bugtraq/2003-02/0063.html

Details

Source: Mitre, NVD

Published: 2003-12-31

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Severity: High

EPSS

EPSS: 0.00581

Detections

Analytics