CVE-2024-39704 – This vulnerability allows remote attackers to e... (How to Fix)

Q: What is the severity of CVE-2024-39704?

CVE-2024-39704 has a CVSS score of 9.8 (CRITICAL). This vulnerability allows remote attackers to execute arbitrary code on clients running vulnerable versions of Melty Blood: Actress Again: Current Code by sending a specially crafted packet to TCP port 46318. The vulnerability affects all users running versions through 1.07 Rev. 1.4.0 of the game, enabling complete system compromise.

📋 TL;DR

This vulnerability allows remote attackers to execute arbitrary code on clients running vulnerable versions of Melty Blood: Actress Again: Current Code by sending a specially crafted packet to TCP port 46318. The vulnerability affects all users running versions through 1.07 Rev. 1.4.0 of the game, enabling complete system compromise.

💻 Affected Systems

Products:

Soft Circle French-Bread Melty Blood: Actress Again: Current Code

Versions: All versions through 1.07 Rev. 1.4.0

Operating Systems: Windows

Default Config Vulnerable: ⚠️ Yes

Notes: The game must be running and listening on TCP port 46318 for multiplayer functionality.

📦 What is this software?

Melty Blood Actress Again Current Code by Unknown Corp

View all CVEs affecting Melty Blood Actress Again Current Code →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system takeover with attacker gaining full control over the victim's machine, enabling data theft, ransomware deployment, or persistent backdoor installation.

🟠

Likely Case

Game client crashes followed by arbitrary code execution, potentially leading to malware installation, credential theft, or system compromise.

🟢

If Mitigated

Network segmentation and firewall rules prevent exploitation, limiting impact to isolated gaming systems.

🌐 Internet-Facing: HIGH - The vulnerability is remotely exploitable via TCP port 46318 without authentication, making internet-facing systems prime targets.

🏢 Internal Only: MEDIUM - Internal network systems running the vulnerable game are at risk from internal attackers or compromised systems.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public proof-of-concept code is available on GitHub and Pastebin, making exploitation straightforward for attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch is available. Users should apply workarounds or discontinue use of vulnerable versions.

🔧 Temporary Workarounds

Block TCP Port 46318

windows

Prevent exploitation by blocking incoming connections to the vulnerable port

netsh advfirewall firewall add rule name="Block Melty Blood RCE" dir=in action=block protocol=TCP localport=46318

Disable Game Network Features

all

Play in offline mode or disable multiplayer functionality

🧯 If You Can't Patch

Segment gaming systems on isolated network VLANs
Implement host-based firewall rules to restrict inbound connections to port 46318

🔍 How to Verify

Check if Vulnerable:

Check game version in game settings or executable properties. If version is 1.07 Rev. 1.4.0 or earlier, the system is vulnerable.

Check Version:

Check game executable properties or in-game version display

Verify Fix Applied:

Verify firewall rules are blocking TCP port 46318 using 'netsh advfirewall firewall show rule name="Block Melty Blood RCE"'

📡 Detection & Monitoring

Log Indicators:

Unexpected game crashes
Network connections to port 46318 from unknown sources
Process creation from game executable

Network Indicators:

TCP connections to port 46318 with unusual payload patterns
Malformed packets to port 46318

SIEM Query:

source_port=46318 AND (payload_size>normal OR protocol_violation=true)

📊 Metadata

CVE ID: CVE-2024-39704

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-74

Published: June 28, 2024

Last Updated: March 20, 2025

🔗 References

https://github.com/MikeIsAStar/Melty-Blood-Actress-Again-Current-Code-Remote-Code-Execution Third Party Advisory
https://pastebin.com/agpnQmhu Exploit
https://github.com/MikeIsAStar/Melty-Blood-Actress-Again-Current-Code-Remote-Code-Execution Third Party Advisory
https://pastebin.com/agpnQmhu Exploit

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-39704, you might also want to check these: