VYPR

Live For Speed

by Live For Speed

CVEs (6)

  • CVE-2007-5464Oct 15, 2007
    risk 0.03cvss epss 0.04

    Stack-based buffer overflow in Live for Speed 0.5X10 and earlier allows remote authenticated users to cause a denial of service (client crash) and possibly execute arbitrary code via a long skin name.

  • CVE-2007-4257Aug 8, 2007
    risk 0.03cvss epss 0.05

    Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string, different vectors than…

  • CVE-2007-4140Aug 3, 2007
    risk 0.03cvss epss 0.04

    Buffer overflow in Live for Speed (LFS) S2 ALPHA PATCH 0.5x allows user-assisted remote attackers to execute arbitrary code via a .mpr file (replay file) that contains a long car name.

  • CVE-2004-2099Dec 31, 2004
    risk 0.03cvss epss 0.04

    Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (servers) to execute arbitrary code via long (1) gamename, (2) gamever, (3) hostname, (4) gametype, (5) mapname or (6) gamemode commands.

  • CVE-2007-4426Aug 20, 2007
    risk 0.00cvss epss 0.03

    Live for Speed (LFS) S1 and S2 allows remote attackers to cause a denial of service (server crash) via (1) a certain 0x00 byte in a pre-login ID 3 packet, which triggers a NULL dereference; or (2) a pre-login ID 5 packet that lacks certain strings, which triggers an invalid…

  • CVE-2007-4425Aug 20, 2007
    risk 0.00cvss epss 0.03

    Multiple buffer overflows in Live for Speed (LFS) demo, S1, and S2 allow remote authenticated users to (1) cause a denial of service (server crash) and probably execute arbitrary code via an ID 3 packet with a long nickname field, and (2) cause a denial of service (server crash)…