Stack-based Buffer Overflow in TORCS and Speed Dreams Allows Arbitrary Code Execution

Stack-based Buffer Overflow in TORCS and Speed Dreams Allows Arbitrary Code Execution

CVE-2012-1189 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary code via a long file name in an engine sample attribute in an xml configuration file.

Learn more about our User Device Pen Test.