Unrated severityNVD Advisory· Published Mar 9, 2009· Updated Jun 16, 2026
CVE-2008-6441
CVE-2008-6441
Description
Format string vulnerability in the Epic Games Unreal engine client, as used in multiple games, allows remote servers to execute arbitrary code via (1) the CLASS parameter in a DLMGR command, (2) a malformed package (PKG), and possibly (3) the LEVEL parameter in a WELCOME command.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:epicgames:unreal_engine:2:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:epicgames:unreal_engine:2:*:*:*:*:*:*:*
- cpe:2.3:a:epicgames:unreal_engine:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:epicgames:unreal_engine:3:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
10- aluigi.altervista.org/adv/unrealcfs-adv.txtnvdExploit
- archives.neohapsis.com/archives/fulldisclosure/2008-09/0190.htmlnvdExploit
- www.securityfocus.com/bid/31141nvdExploit
- secunia.com/advisories/31854nvdVendor Advisory
- www.osvdb.org/48290nvd
- www.osvdb.org/48291nvd
- www.securityfocus.com/archive/1/496297/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45088nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45089nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45090nvd
News mentions
0No linked articles in our index yet.