CVE-2021-30481
HIGHSteam Client < 2021-04-10 - Authenticated Remote Code Execution via Steam Invite Buffer Overflow
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2021-30481. PoCs published by floesen.
AI-analyzed exploit summary This repository contains a functional exploit for CVE-2021-30481, a remote code execution vulnerability in Counter-Strike: Global Offensive (CS:GO) via malicious screenshot responses. The exploit leverages ROP chains and shellcode to achieve arbitrary code execution on the victim's machine.
Description
Valve Steam before 2021-04-17, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.
Exploits (1)
This repository contains a functional exploit for CVE-2021-30481, a remote code execution vulnerability in Counter-Strike: Global Offensive (CS:GO) via malicious screenshot responses. The exploit leverages ROP chains and shellcode to achieve arbitrary code execution on the victim's machine.
References (4)
Scores
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H