Half-Life Multiple Vulnerabilities - Secunia Advisories - Vulnerability Intelligence

Half-Life Multiple Vulnerabilities
Secunia Advisory:	SA9392	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2003-07-30
Popularity:	6,000 views

Critical:	Highly critical
Impact:	System access
Where:	From remote
Solution Status:	Unpatched

Software:	Half-Life Dedicated Server 1.x Half-Life Dedicated Server 3.x Half-Life Dedicated Server 4.x Halflife Client

Subscribe:	Instant alerts on relevant vulnerabilities

Description: Multiple vulnerabilities has been identified in Half-Life possibly allowing malicious people to gain system access. Half-Life Server: 1) The problem is that certain parameters in the packet used to join a game isn't verfied by the server. This allows a malicious client to cause a buffer overflow which could possibly be exploited to execute arbitrary code. 2) It is possible to cause the server to enter an infinite loop by sending a 380 character long value to the server. This causes a Denial of Service. Half-Life Client: 1) A malicious server may cause a buffer overflow in the client due to lack of verification of input in the connection routine. This could be exploited to execute arbitrary code. Furthermore users of the Half-Life client should be aware that Half-Life modules may include DLL files, these could possibly contain malicious code. Even if a module does not contain DLL files the module could still cause a buffer overflow which could be exploited to execute arbitrary code. Exploit code does exist. Solution: No update is available. You should never play games on production systems or on hosts which are connected to internal networks. Provided and/or discovered by: Auriemma Luigi, PivX Solutions Original Advisory: http://www.pivx.com/luigi/adv/hlbof-server-adv.txt http://www.pivx.com/luigi/adv/hlbof-client-adv.txt

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

New advisories:	9
New vulnerabilities:	26
Updated advisories:	61

Less // 226 views

KimsON Cross-Site Scripting Vulnerability

Moderately // 347 views

Streamripper Multiple Buffer Overflow Vulnerabilities

Less // 392 views

No-IP Linux Dynamic Update Client Buffer Overflow Vulnerability

Highly // 309 views

Free Directory Script "API_HOME_DIR" File Inclusion Vulnerability

Moderately // 304 views

E-topbiz Link Back Checker "auth" Cookie Security Bypass

Moderately // 449 views

MDaemon Server WorldClient Script Insertion Vulnerabilities

Less // 400 views

Citrix XenServer Ext2/Ext3 Processing Security Bypass Vulnerability

Highly // 358 views

Ubuntu update for firefox, firefox-3.0, and xulrunner-1.9

Highly // 343 views

Ubuntu update for libxml2

18th Nov, 2008

New advisories:	27
New vulnerabilities:	38
Updated advisories:	26

Not // 664 views

vBulletin SQL Injection Vulnerabilities

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.