[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] sacred (pcgame) server flaw

To: "full_discl." <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] sacred (pcgame) server flaw
From: "the.soylent" <the.soylent@xxxxxxxxx>
Date: Sun, 21 Nov 2004 03:25:33 +0100

Program: Sacred (pc game)
http://sacred-game.com
type: simple DoS, no client-auth
affected version: <1.0.6.2

note: -fixed in later versions (>1.0.7.0) (dated:31.08.2004) -this security-lag exits for nearly half a year. although ascaron was informed at the date of release (02.03.2004), nothing happens long time.

"exploit"-scenario: Use telnet client to connect to game-port, u will see that a valid(!) user connects. 16 times, and server will not accept any more connections (from valid users for example). after "fake-clients" get a timeout, only one of them gets kicked.

example: http://forum.sacred-game.com/attachment.php?attachmentid=1209 (nothing special)

greetz soylent

---------------------------
stop that "Why is IRC still around?" -crap !!!

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: Re: [Full-Disclosure] University Researchers Challenge Bush Win In Florida
Next by Date: [Full-Disclosure] GET /M83A making rounds again?
Previous by thread: Re: Re: [Full-Disclosure] IE is just as safe as FireFox: Moved to Education
Next by thread: [Full-Disclosure] GET /M83A making rounds again?
Index(es):
- Date
- Thread