CVE-2008-2106

Call of Duty 4 < 1.5 - Authenticated Denial of Service via Type 7 Stats Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-2106. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes a denial-of-service vulnerability in Call of Duty 4 1.5, where specially crafted commands can crash the application. It references external sources for exploit binaries but does not contain actual exploit code.

Description

Call of Duty 4 (CoD4) 1.5 and earlier allows remote authenticated users to cause a denial of service (crash) via a type 7 stats packet, which triggers a memcpy with a negative value.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdosmultiple

https://www.exploit-db.com/exploits/31728

View Code ZIP pw:eip

The provided text describes a denial-of-service vulnerability in Call of Duty 4 1.5, where specially crafted commands can crash the application. It references external sources for exploit binaries but does not contain actual exploit code.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Call of Duty 4 1.5

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK