----------------------------------------------------------------------


Looking for a job?


Secunia is hiring skilled researchers and talented developers.


http://secunia.com/company/jobs/


----------------------------------------------------------------------

TITLE:
GameCore Engine GameID Field Parsing Integer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA39793

VERIFY ADVISORY:
http://secunia.com/advisories/39793/

DESCRIPTION:
Luigi Auriemma has reported a vulnerability in GameCore Engine, which
can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerability is caused due to an integer overflow error when
processing the GameID field and can be exploited to corrupt memory
and crash the game via a specially crafted UDP packet.

The vulnerability is reported in version 2.5. Other versions may also
be affected.

SOLUTION:
Host games only in a trusted network environment.

PROVIDED AND/OR DISCOVERED BY:
Luigi Auriemma

ORIGINAL ADVISORY:
http://aluigi.altervista.org/adv/gamecorex-adv.txt

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------