CVE-2007-4257 Information

Feb 14, 2021 cve

Description

Multiple buffer overflows in Live for Speed (LFS) S1 and S2 allow user-assisted remote attackers to execute arbitrary code via (1) a .spr file (single player replay file) containing a long user name or (2) a .ply file containing a long number plate string different vectors than CVE-2007-4140.

Reference

http://osvdb.org/46768 http://osvdb.org/46769 http://www.securityfocus.com/bid/25206 http://www.securityfocus.com/bid/25208 https://www.exploit-db.com/exploits/4262 https://www.exploit-db.com/exploits/4263

Share on: