Code injection in The Battle for Wesnoth

#VU14013 Code injection in The Battle for Wesnoth

Published: 2018-07-25 | Updated: 2018-07-26

Vulnerability identifier: #VU14013

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-1999023

CWE-ID: CWE-94

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
The Battle for Wesnoth
Client/Desktop applications / Games

Vendor: The Battle for Wesnoth Project

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a code injection in the Lua scripting engine. A remote unauthenticated attacker can load a specially crafted saved games, networked games, replays, and player content to execute arbitrary code outside the sandbox.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Update to version 1.14.4.

Vulnerable software versions

The Battle for Wesnoth: All versions

External links
http://gist.github.com/shikadiqueen/45951ddc981cf8e0d9a74e4b30400380

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Arch Linux update for wesnoth

Remote code execution in The Battle for Wesnoth