Gameguru Mania Updated:03:07 AM EDT Apr,24


POPULAR CHAT TOPIC
8K Shots From Unreal Engine
BloodRayne: Betrayal Coming
GRID Autosport Announced
Dragon Age 3 Inquisition - G
TechNews - Microsoft reveals
CRYENGINE Video Shows Smoke
Elder Scrolls Online Acciden
Star Citizen - Arena Command
Steam's Weekly Top Sellers
Final Fantasy 14 PS4 vs PC C
Wolfenstein: The New Order G
Unofficial Xbox One Gamepad
Skywind - Official Developme
Crytek's Cevat Yerli On Mant
Battlefield 1942 is free fro
Alien: Isolation video shows
TechNews - Nvidia GeForce 33
Defense Grid 2 - PAX East Pr
TechNews - The Galaxy S5 cos
Watch Someone Beat 'Half-Lif
CCP cancels vampire MMO Worl
Watch_Dogs Will Require An I


Please e-mail us if you have news.

(c) 1997-2014 Box Network Ltd.
Privacy Policy statement


SEARCH GAME:   Windows 8.1 Tools    CD/DVD tools    SteamOS Beta
 Modern Warfare 3 and CryENGINE 3 Vulnerable - briefly
(hx) 03:34 PM EST - Nov,12 2012
Luigi Auriemma and Donato Ferrante of ReVuln also showed a vulnerability in the CryEngine 3 gaming platform:
Researchers have found a serious vulnerability in the game "Call of Duty: Modern Warfare 3," and another in the CryEngine 3 graphics platform on which many games run.

The first problem the pair presented is a denial-of-service vulnerability in Call of Duty: Modern Warfare 3, made by Activision. Auriemma showed in a video how the server administrator received a warning when he remotely crashed the server running the game.

Auriemma masked some details in his presentation so as to not give too much information away, but he and Ferrante are planning to release advisories on the two vulnerabilities next Tuesday, the launch day for "Black Ops II," the latest game in the Call of Duty series. Ferrante said they are willing to work with Activision but aren't going to volunteer the information, since their research is part of their business.

The second problem relates to CryEngine 3, a graphics engine developed by Crytek for use in its own and other companies' games.

Auriemma's demonstration showed an attack on CryEngine 3 within the game Nexuiz. The attack, at the server level, enabled him to create a remote shell on a game-player's computer.

In the demonstration, Auriemma caused a graphic of cat riding a rocket to be displayed on the victim's computer.

last 10 comments:
Csimbi(06:51 PM EST - Nov,12 2012 )
Guess what. Windows is vulnerable, Flash is vulnerable, Firefox is vulnerable, Diablo is vulnerable.
In fact, every single piece of software is vulnerable - but nobody bothered to research those yet.

All comments
 Add your comment (free registration required)