header-logo
Suggest Exploit
vendor:
GameSpy SDK
by:
Unknown
9
CVSS
CRITICAL
Buffer Overflow
119
CWE
Product Name: GameSpy SDK
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

GameSpy SDK CD-key Validation Functionality Buffer Overflow Vulnerability

The GameSpy SDK is prone to a buffer overflow vulnerability in its CD-key validation functionality. This vulnerability occurs due to a failure of the SDK to properly check the length of user-supplied network data before copying it to a fixed-sized memory buffer. Exploiting this vulnerability may allow attackers to execute arbitrary machine code within the context of the affected GameSpy developed game.

Mitigation:

Apply the latest patch or update from the vendor. Avoid using affected versions of GameSpy SDK. Use network-level controls to restrict access to vulnerable systems.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11881/info

It has been reported that the GameSpy SDK is prone to a buffer overflow vulnerability in its CD-key validation functionality. This issue is due to a failure of the SDK to properly check the length of user-supplied network data prior to copying it to a fixed-sized memory buffer.

Exploitation of this issue may allow attackers to execute arbitrary machine code in the context of the affected GameSpy developed game.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/24815.zip

Navigation

Suggest Exploit

Services By CQR