SecurityTracker.com Archives - Master of Orion 3 Can Be Crashed By Remote Users

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

SecurityTracker
Archives

Sign Up

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Affiliates

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Partners

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Game) > Master of Orion 3

Vendors: Quicksilver Software

Master of Orion 3 Can Be Crashed By Remote Users

SecurityTracker Alert ID: 1011966

SecurityTracker URL: http://securitytracker.com/id?1011966

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Date: Oct 27 2004

Impact: Denial of service via network

Exploit Included: Yes

Version(s): 1.2.5

Description: Luigi Auriemma reported a vulnerability in Master of Orion 3. A remote user can cause the game service to crash.

It is reported that a remote user can specify a large data block size to cuase the game to crash.

It is also reported that a remote user can make multiple consecutive connections using large nickname strings to cause the game to crash.

A demonstration exploit is available at:

http://aluigi.altervista.org/poc/moo3boom.zip

Impact: A remote user can cause the game to crash.

Solution: No solution was available at the time of this entry.

Vendor URL: www.quicksilver.com/ (Links to External Site)

Cause: Exception handling error

Underlying OS: UNIX (OS X), Windows (Any)

Reported By: Luigi Auriemma <aluigi@autistici.org>

Message History: None.

Source Message Contents

Date: Wed, 27 Oct 2004 18:45:00 +0000
From: Luigi Auriemma <aluigi@autistici.org>
Subject: Crashs in Master of Orion III 1.2.5

 
 
 
#######################################################################
 
                             Luigi Auriemma
 
Application:  Master of Orion III
              http://moo3.quicksilver.com
Versions:     <= 1.2.5
Platforms:    Windows and MacOS
Bugs:         - allocation error
              - big nicknames crash
Exploitation: remote, versus server
Date:         27 October 2004
Author:       Luigi Auriemma
              e-mail: aluigi@altervista.org
              web:    http://aluigi.altervista.org
 
 
#######################################################################
 
 
1) Introduction
2) Bugs
3) The Code
4) Fix
 
 
#######################################################################
 
===============
1) Introduction
===============
 
 
Master of Orion III is a spatial strategy game developed by Quicksilver
(http://www.quicksilver.com) and released in February 2003.
 
 
#######################################################################
 
=======
2) Bugs
=======
 
 
-------------------
A] allocation error
-------------------
 
Each data block exchanged between clients and server is preceded by a
32 bits number used to specify its size.
This amount of data is automatically allocated by the game and if it is
too big, and so unallocable, the game automatically exits.
 
 
----------------------
B] big nicknames crash
----------------------
 
The game uses some anti buffer-overflow protections but if an attacker
makes multiple consecutive connections (variable between 1 and 10)
using big nicknames, the game crashs.
 
 
#######################################################################
 
===========
3) The Code
===========
 
 
http://aluigi.altervista.org/poc/moo3boom.zip
 
 
#######################################################################
 
======
4) Fix
======
 
 
No fix.
Developers will not fix this problem unless there are significant
incidents reported.
 
 
#######################################################################
 
 
--- 
Luigi Auriemma
http://aluigi.altervista.org

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us | Help
Copyright 2004, SecurityGlobal.net LLC