https://www.exploit-db.com/exploits/22223
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200312-405

EpicGamesUnrealEngine226f至436版本存在缓冲区溢出漏洞。远程攻击者可以借助UnrealURL中的超长主机字符串导致服务拒绝（崩溃）。

source: http://www.securityfocus.com/bid/6774/info

t has been reported that a memory corruption bug exists in games based on the Unreal Engine. Under some circumstances, when the game client connects to a server using a excessive length Unreal URL it may be possible for the malformed URL to write over sensitive areas of stack memory causing the client to crash.

unreal://(261 chars)[EIP_byte2][EIP_byte1]
unreal://(258 chars)

来源:XF
名称:ut-url-memory-corruption(11301)
链接:http://xforce.iss.net/xforce/xfdb/11301
来源:BID
名称:6774
链接:http://www.securityfocus.com/bid/6774
来源:BUGTRAQ
名称:20030211Re:EpicGamesthreatenstosuesecurityresearchers
链接:http://archives.neohapsis.com/archives/bugtraq/2003-02/0142.html
来源:BUGTRAQ
名称:20030205Unrealengine:resultsofmyresearch
链接:http://archives.neohapsis.com/archives/bugtraq/2003-02/0063.html