Halflife Map Command Buffer Overflow Vulnerability
BID:2476
Info
Halflife Map Command Buffer Overflow Vulnerability
| Bugtraq ID: | 2476 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 09 2001 12:00AM |
| Updated: | Mar 09 2001 12:00AM |
| Credit: | This vulnerability was announced to Bugtraq by Stanley G. Bubrouski <[email protected]> on March 9, 2001. |
| Vulnerable: |
Valvesoftware Half-Life 1.1 .0.4 Windows Valvesoftware Half-Life 1.1 .0.4 Linux |
| Not Vulnerable: | |
Discussion
Halflife Map Command Buffer Overflow Vulnerability
Halflife is a popular internet gaming client and server software package. It is maintained and distributed by Sierra Studios.
A problem with the map command may permit a buffer overflow, and lead to execution of arbitrary code. Due to insufficient bounds checking, it is possible to overflow a buffer in the map command. Upon input of 58 to 59 characters, the buffer holding argument to the map command overflows, overwriting variables on the stack including the return address.
Therefore, it is possible for a malicious remote user with access to execute the map command to execute arbitrary code as the UID of the Halflife server process, and potentially gain access to a system running the Halflife server.
Halflife is a popular internet gaming client and server software package. It is maintained and distributed by Sierra Studios.
A problem with the map command may permit a buffer overflow, and lead to execution of arbitrary code. Due to insufficient bounds checking, it is possible to overflow a buffer in the map command. Upon input of 58 to 59 characters, the buffer holding argument to the map command overflows, overwriting variables on the stack including the return address.
Therefore, it is possible for a malicious remote user with access to execute the map command to execute arbitrary code as the UID of the Halflife server process, and potentially gain access to a system running the Halflife server.