CVE-2009-3924

EUVD-2009-3895
Buffer overflow in pbsv.dll, as used in Soldier of Fortune II and possibly other applications when Even Balance PunkBuster 1.728 or earlier is enabled, allows remote attackers to cause a denial of service (application server crash) and possibly execute arbitrary code via a long restart packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
raven_softwaresoldier_of_fortune_2
*
punkbusterpunkbuster
𝑥
≤ 1.728
punkbusterpunkbuster
1.272
punkbusterpunkbuster
1.457
punkbusterpunkbuster
1.458
punkbusterpunkbuster
1.641
punkbusterpunkbuster
1.642
punkbusterpunkbuster
1.718
punkbusterpunkbuster
1.723
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://aluigi.altervista.org/adv/sof2pbbof-adv.txt
http://aluigi.org/poc/sof2pbbof.zip
http://secunia.com/advisories/36221
https://exchange.xforce.ibmcloud.com/vulnerabilities/52400
http://aluigi.altervista.org/adv/sof2pbbof-adv.txt
http://aluigi.org/poc/sof2pbbof.zip
http://secunia.com/advisories/36221
https://exchange.xforce.ibmcloud.com/vulnerabilities/52400