Unrated severityNVD Advisory· Published Nov 23, 2004· Updated Apr 16, 2026

CVE-2004-0278

Description

Ratbag game engine, as used in products such as Dirt Track Racing, Leadfoot, and World of Outlaws Spring Cars, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet that specifies the length of data to read and then sends a second TCP packet that contains less data than specified, which causes Ratbag to repeatedly check the socket for more data.

Affected products

Ratbag/Dirt Track Racing2 versions
cpe:2.3:a:ratbag:dirt_track_racing:1.0.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ratbag:dirt_track_racing:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ratbag:dirt_track_racing:2.0:*:*:*:*:*:*:*
Ratbag/Dirt Track Racing Australia
cpe:2.3:a:ratbag:dirt_track_racing_australia:*:*:*:*:*:*:*:*
Ratbag/Dirt Track Racing Sprint Cars
cpe:2.3:a:ratbag:dirt_track_racing_sprint_cars:*:*:*:*:*:*:*:*
Ratbag/Leadfoot
cpe:2.3:a:ratbag:leadfoot:*:*:*:*:*:*:*:*
Ratbag/World Of Outlaws Sprint Cars
cpe:2.3:a:ratbag:world_of_outlaws_sprint_cars:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/9644nvdExploitVendor Advisory
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/15188nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000