SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Game)  >   Serious Engine Vendors:   Croteam
Games Using the Serious Engine Can Be Crashed By Remote Users
SecurityTracker Alert ID:  1012344
SecurityTracker URL:  http://securitytracker.com/id/1012344
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Nov 29 2004
Impact:   Denial of service via network
Exploit Included:  Yes  

Description:   Luigi Auriemma reported a vulnerability in the Serious Engine game software engine. A remote user can cause the target game service to crash.

It is reported that a remote user can send UDP packets containing join requests to exceed the maximum number of players on the server, causing the target game service to crash.

The vulnerability was originally reported by Luigi Auriemma in September 2004 as a flaw in 'Alpha Black Zero: Intrepid Protocol', as documented in Alert ID 1011454. However, Luigi Auriemma has confirmed that the flaw resides in the underlying Serious Engine.

The Alpha Black Zero, the Nitro game series, and Serious Sam Second Encounter games are affected. Other games that use the Serious Engine may also be affected.

A demonstration exploit is available at:

http://aluigi.altervista.org/fakep/ssfakep.zip

Impact:   A remote user can cause the target game service to crash.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.croteam.com/ (Links to External Site)
Cause:   State error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   None.


 Source Message Contents

Subject:  Players overflow in Serious engine UDP (was Alpha Black Zero, 29



#######################################################################

                             Luigi Auriemma

Application:  Serious engine
              http://www.seriousengine.com
Games:        all the games based on this engine and using the UDP
              protocol:
              - Alpha Black Zero
              - Nitro family
              - Serious Sam Second Encounter 1.07
Platforms:    Windows, Linux and Mac
Bug:          crash
Exploitation: remote, versus server
Date:         28 November 2004 (and 29 Sep 2004)
Author:       Luigi Auriemma
              e-mail: aluigi@altervista.org
              web:    http://aluigi.altervista.org


#######################################################################


1) Introduction
2) Bug
3) The Code
4) Fix


#######################################################################

===============
1) Introduction
===============


The Serious engine is a well known game engine developed by Croteam
(http://www.croteam.com) and used by some games.


#######################################################################

======
2) Bug
======


The bug affects the games based on the Serious engine using the UDP
protocol (those using TCP are immune).

The problem is that the server doesn't limit the amount of new players,
so it crashs when too much (fake) players try to join.

Is needed only one packet to create a fake player and the bug can be
exploited also versus servers protected by password "without" knowing
the keyword.


#######################################################################

===========
3) The Code
===========


http://aluigi.altervista.org/fakep/ssfakep.zip


#######################################################################

======
4) Fix
======


No fix.


#######################################################################


--- 
Luigi Auriemma
http://aluigi.altervista.org
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC