- Description
- Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (servers) to execute arbitrary code via long (1) gamename, (2) gamever, (3) hostname, (4) gametype, (5) mapname or (6) gamemode commands.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 5.1
- Impact score
- 6.4
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:electronic_arts:need_for_speed_hot_pursuit_2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2451448D-24DE-4845-8DAC-4569BE63BDE9",
"versionEndIncluding": "242.0"
}
],
"operator": "OR"
}
]
}
]