Valve Software Half-Life 1.1 Client Connection Routine Buffer Overflow Vulnerability (2)

2014-07-01T00:00:00
ID SSV:76752
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/8299/info
 
Half-Life Client has been reported prone to a remotely exploitable buffer overflow condition.
 
The issue presents itself in the client connection routine, used by the client to negotiate a connection to the Half-Life game server. Due to a lack of sufficient bounds checking performed on both the parameter and value of data transmitted from the game server to the client, a malicious server may execute arbitrary code on an affected client.

http://www.exploit-db.com/sploits/22967.zip