---------------------------------------------------------------------- Want a new job? http://secunia.com/secunia_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ International Partner Manager - Project Sales in the IT-Security Industry: http://corporate.secunia.com/about_secunia/64/ ---------------------------------------------------------------------- TITLE: Unreal Tournament 3 Denial of Service and Memory Corruption SECUNIA ADVISORY ID: SA31265 VERIFY ADVISORY: http://secunia.com/advisories/31265/ CRITICAL: Highly critical IMPACT: DoS, System access WHERE: >From remote SOFTWARE: Unreal Tournament 3 1.x http://secunia.com/product/19382/ DESCRIPTION: Luigi Auriemma has reported some vulnerabilities in Unreal Tournament, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system. 1) An input validation error when processing certain packet types can be exploited to cause a memory corruption via a specially crafted packet with an overly large size field (greater than 172 bytes). Successful exploitation may allow execution of arbitrary code. 2) A NULL pointer dereference error can be exploited to cause a crash via a specially crafted packet with the size field larger than the actual packet size. The vulnerabilities are reported in Unreal Tournament 3 versions 1.2 and 1.3beta4. SOLUTION: Use in trusted network environments only. PROVIDED AND/OR DISCOVERED BY: Luigi Auriemma ORIGINAL ADVISORY: http://aluigi.altervista.org/adv/ut3mendo-adv.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------