Issues the date: 2008-09-12
Renewal date: 2008-09-17

Is affected the system:
Epic Games Unreal Engine 3
Epic Games Unreal Tournament 3 1.3
Description:
--------------------------------------------------------------------------------
BUGTRAQ ID: 31140

The Unreal engine is one section the network which plays uses is played the engine.

In the Unreal engine uses from the text read string of character function existence crack. If reads the digit for negative value, this function deletion minus sign then attempts to assign two times in this value memory quantity, because the new buffer uses in containing the unicode edition the string of character. Before carrying out the data copy, to the value minus sign execution extra inspection, by against will present the integer overflow.

If the aggressor used has been more than on the system to be possible to assign the space 32 figure, the engine will demonstrate that the following diary news and terminated immediately:

  Critical: Ran out of virtual memory. To prevent this condition, you
  must free up more space on your primary hard disk.

<* origin: Luigi Auriemma (aluigi@pivx.com)
 
  Link: http://marc.info/?l=bugtraq&m=122123646915323&w=2
*>

Test method:
--------------------------------------------------------------------------------

Warning

The following procedure (method) possibly has the aggressivity, only supplies the safe research and teaching. The user risk is proud!

http://aluigi.org/poc/ut3sticle.zip

Suggested:
--------------------------------------------------------------------------------
Manufacturer patch:

Epic Games
----------
At present the manufacturer has not provided the patch or the promotion procedure, we suggested that uses this software's user momentarily to pay attention to the manufacturer the main page to gain the newest edition:

http://www.epicgames.com/