Skip to content

J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1254
    posted: 09/05/08
  • NSM Daily Update #1254
    posted: 09/05/08
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1254
    posted: 09/05/08
  • Deep Inspection 5.1, 5.2, 5.3r4 and below #1252
    posted: 09/05/08
  • Deep Inspection 5.0 #1132
    posted: 04/01/08
  • Antivirus
    posted: 09/05/08

Title: Clever's Games Terminator 3: War of the Machines Server Buffer Overflow Vulnerability

Severity: HIGH

Description:

Terminator 3: War of the Machines is a multiplayer game developed by Clever's Games.

Terminator 3 : War of the Machines server is prone to a buffer overflow vulnerability that may permit remote attackers to execute arbitrary code on a vulnerable system, this may facilitate unauthorized access.

The issue presents itself due to insufficient boundary checks performed by the server application on the text field containing the client cd-key hash.

If the game server receives a cd-key hash containing specific malicious data it becomes unstable. When the server reads in the cd-key hash, sensitive regions of memory may be corrupted with attacker-supplied values.

It may be possible for attackers to leverage this vulnerability to execute instructions. Any code executed would be in the security context of the game server process.

Terminator 3: War of the Machines version 1.16 is affected by this issue.

Affected Products:

  • Clever's Games Terminator 3: War of the Machines 1.16.0

References: