Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote malicious users to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than CVE-2007-4140.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lfs live for speed sp1 |
||
lfs live for speed sp2 |