Title: People Can Fly Painkiller Remote Buffer Overflow Vulnerability
Severity: HIGH
Description:
Painkiller is a computer game for Microsoft Windows that includes support for network play.
Painkiller is reported prone to a remote buffer overflow vulnerability. This issue presents itself due to insufficient boundary checks performed by the application during a connection request.
It is reported that to connect to a Painkiller server a client initiates a handshake with the server. This request involves the client sending a connection request, the server responding with a challenge key and a request for a password, and finally the client supplying a password and other information to the server. The overflow occurs if the client supplies an excessively long password value exceeding 256 bytes to the server. This value is copied into a finite buffer resulting in memory corruption.
It is likely that this issue causes a denial of service condition in the server. If an attacker is successful in overwriting sensitive memory addresses and redirecting process execution to attacker supplied memory containing malicious code, this issue may result in arbitrary code execution. This may allow an attacker to gain unauthorized access to a vulnerable computer.
Painkiller versions 1.3.1 and prior are reported vulnerable to this issue.
Affected Products:
- People can Fly Painkiller 1.3.1
References:
- Painkiller: Painkiller Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
