PunkBuster WebTool WebKey Parameter Remote Buffer Overflow Vulnerability

Bugtraq ID:	18106
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	May 23 2006 12:00AM
Updated:	May 26 2006 05:18PM
Credit:	Luigi Auriemma discovered this issue.
Vulnerable:
Not Vulnerable:	PunkBuster PunkBuster 1.229

PunkBuster WebTool WebKey Parameter Remote Buffer Overflow Vulnerability

PunkBuster WebTool is prone to a remote buffer-overflow vulnerability.

The vulnerability presents itself when the application handles a large value for the 'webkey' parameter used by the WebTool component.

A successful attack may result in memory corruption leading to arbitrary code execution in the context of the application. This can facilitate a remote compromise.

PunkBuster versions prior to 1.229 are vulnerable to this issue.

PunkBuster WebTool WebKey Parameter Remote Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]

Proof-of-concept examples are available:

• /data/vulnerabilities/exploits/punkbuster_poc.txt

PunkBuster WebTool WebKey Parameter Remote Buffer Overflow Vulnerability

Solution:
The vendor has released version 1.229 to address this issue.

PunkBuster WebTool WebKey Parameter Remote Buffer Overflow Vulnerability

References:

• Product Home Page (PunkBuster)
  
• Buffer-overflow in the WebTool service of PunkBuster for servers (Luigi Auriemma )