GAME: DirectPlay Fake Player Denial of Service
This signature detects attempts to exploit a known vulnerability in DirectPlay, a component of DirectX 8. A malicious player can send malformed player join packets, causing the server to fill up its player slots with nonexistent players, denying the game service to legitimate players.
Extended Description
Microsoft DirectX is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to interrupt existing sessions or crash or freeze the application that uses DirectX, resulting in denial-of-service conditions.
Affected Products
Southlogic_studios deer_hunter
References
BugTraq: 41794
URL: http://msdn.microsoft.com/directx/ http://aluigi.altervista.org/adv/dplay8blah-adv.txt
Short Name
APP:GAME:DIRECTPLAY-PLAYER-DOS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Denial DirectPlay Fake Player Service bid:41794 of
Release Date
08/12/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3359
Port
UDP/2302
False Positive
Unknown
Vendors
Relic_entertainment
Gabriel_interactive
Pterodon
Southlogic_studios
Gas_powered_games
Microsoft