Vulnerability Details : CVE-2004-2099
Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), version 242 and earlier, allows remote attackers (servers) to execute arbitrary code via long (1) gamename, (2) gamever, (3) hostname, (4) gametype, (5) mapname or (6) gamemode commands.
Vulnerability category: OverflowExecute code
Products affected by CVE-2004-2099
- cpe:2.3:a:electronic_arts:need_for_speed_hot_pursuit_2:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-2099
4.62%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2004-2099
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.1
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:P |
4.9
|
6.4
|
NIST |
References for CVE-2004-2099
Jump to