Format string vulnerability in the Epic Games Unreal engine client, as used in multiple games, allows remote servers to execute arbitrary code via (1) the CLASS parameter in a DLMGR command, (2) a malformed package (PKG), and possibly (3) the LEVEL parameter in a WELCOME command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
epicgames unreal engine 2 |
||
epicgames unreal engine 2.5 |
||
epicgames unreal engine 3 |