You are an unregistered user, you can register here
Navigation

Information

Site

Donations
If you wish to make a donation you can by clicking the image below.


BeyondUnreal News

 
Go Back   The Unreal Admins Page > Forums > Front Page > Downloads > Unreal Tournament > Admin

Reply
Thread Tools Display Modes
  #1  
Unread 22nd June, 2004, 11:53 PM
LoKi_DarkAngel LoKi_DarkAngel is offline
Forum Newcomer
 
Join Date: Jul 2003
Location: Germany
Posts: 10
Exclamation Query Vunerability Fix

It's a security patch for a security hole found by Luigi Auriemma (bug details below).

Many thx to our clanmember JustDoIt for this patch.

Code:
Bug
===

Almost all the games based on the Unreal engine support the "secure"
query.
This type of query is part of the so called Gamespy query protocol and
is used to know if the game server is able to calculate an exact
response using a provided string:
  http://unreal.epicgames.com/IpServer.htm
  http://aluigi.altervista.org/papers/gsmsalg.h

The query is a simple UDP packet like \secure\ABCDEF
If an attacker uses a long value in his secure query, in the Unreal
based game server will be overwritten some important memory zones.

Both remote code execution and spoofing are possibles.
Attached Files
File Type: zip SecureValidate.zip (3.4 KB, 1097 views)

Last edited by Azazel : 23rd June, 2004 at 12:44 PM.
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +1. The time now is 05:28 AM.


 

All pages are copyright The Unreal Admins Page.
You may not copy any pages without our express permission.