Terminator 3: War of the Machines Client CD-key Overflow

2005-05-26T08:21:04
ID OSVDB:16866
Type osvdb
Reporter Luigi Auriemma(aluigi@autistici.org)
Modified 2005-05-26T08:21:04

Description

Vulnerability Description

A remote overflow exists in Terminator 3: War of the Machines. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long CD-key hash, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in Terminator 3: War of the Machines. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long CD-key hash, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor URL: http://www.atari.com/us/games/terminator_3_war/pc Secunia Advisory ID:15520 Related OSVDB ID: 16867 Other Advisory URL: http://aluigi.altervista.org/adv/t3wmbof-adv.txt Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0605.html CVE-2005-1772