ID:5876 - Exploit for Input validation error in Counter-Strike Global Offensive - CVE-2019-15943

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:5876 - Exploit for Input validation error in Counter-Strike Global Offensive - CVE-2019-15943

ID:5876 - Exploit for Input validation error in Counter-Strike Global Offensive - CVE-2019-15943

Published: June 17, 2021


Vulnerability identifier: #VU21234
Vulnerability risk: High
CVE-ID: CVE-2019-15943
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
Counter-Strike Global Offensive

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack or execute arbitrary code.

The vulnerability exists due to insufficient validation of user-supplied input in the "vphysics.dll". A remote attacker can create a gaming server, invite a victim to this server, because a crafted map is mishandled during a memset call and execute arbitrary code or cause a denial of service condition on the target system.


Remediation

Install updates from vendor's website.