---------------------------------------------------------------------- BETA test the new Secunia Personal Software Inspector! The Secunia PSI detects installed software on your computer and categorises it as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors. Download the free PSI BETA from the Secunia website: https://psi.secunia.com/ ---------------------------------------------------------------------- TITLE: Live for Speed Multiple Vulnerabilities SECUNIA ADVISORY ID: SA26569 VERIFY ADVISORY: http://secunia.com/advisories/26569/ CRITICAL: Highly critical IMPACT: DoS, System access WHERE: >From remote SOFTWARE: Live for Speed 0.x http://secunia.com/product/15488/ DESCRIPTION: Luigi Auriemma has reported some vulnerabilities in Live for Speed, which can be exploited by malicious people to cause a DoS (Denial of Service) or to compromise a vulnerable system. 1) A boundary error in the processing of network packets with an "ID" of 3 can be exploited to cause a stack-based buffer overflow by sending a specially crafted packet containing an overly long nickname (over 24 bytes). Successful exploitation allows execution of arbitrary code but requires valid credentials if the server is password protected. 2) A boundary error in the processing network packets with an "ID" of 10 can be exploited to cause a buffer overflow by sending a specially crafted packet requesting an overly long track name, inexistent on the server. Successful exploitation requires valid credentials if the server is password protected. 3) An error in the processing of pre-login packets with an "ID" of 3 can be exploited to cause a DoS by sending a specially crafted packet containing a 0 byte at offset 23. 4) An error in the processing of pre-login packets with an "ID" of 5 can be exploited to cause a DoS by sending a specially crafted packet to the vulnerable server. NOTE: Vulnerabilities #3 and #4 don't affect Demo and LAN servers. The vulnerabilities are reported in versions prior to 0.5X10. Other versions may also be affected. SOLUTION: Use Live for Speed as a multiplayer server only in a trusted network environment. PROVIDED AND/OR DISCOVERED BY: Luigi Auriemma ORIGINAL ADVISORY: http://aluigi.altervista.org/adv/lfsbof-adv.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------