Description
The Unreal engine, as used in Unreal Tournament 3 1.3, Unreal Tournament 2003 and 2004, Dead Man's Hand, Pariah, WarPath, Postal2, and Shadow Ops, allows remote authenticated users to cause a denial of service (server exit) via multiple file downloads from the server, which triggers an assertion failure when the Closing flag in UnChan.cpp is set.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Luigi Auriemma · textdosmultiple
https://www.exploit-db.com/exploits/32386
References (4)
Core 4
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/31205
Exploit mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2008-09/0321.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/48293
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/496399/100/0/threaded
Scores
EPSS
0.0347
EPSS Percentile
87.6%
Details
CWE
CWE-399
Status
published
Products (8)
digital_extreme/pariah
epic_games/unreal_tournament
3 1.3
epic_games/unreal_tournament
2003
epic_games/unreal_tournament
2004
groove_games/warpath
human_head_studios/dead_mans_hand
red_mercury/shadow_ops
whiptail_interactive/postal
2
Published
Aug 19, 2009
Tracked Since
Feb 18, 2026