Blizzard Entertainment StarCraft Brood War Minimap Preview Remote Denial of Service Vulnerability

Bugtraq ID:	25478
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2007-4638
Remote:	Yes
Local:	No
Published:	Aug 29 2007 12:00AM
Updated:	May 07 2015 05:35PM
Credit:	Gynvael Coldwind is credited with the discovery of this issue.
Vulnerable:	Blizzard Entertainment StarCraft Brood War 1.15.1
Not Vulnerable:

Blizzard Entertainment StarCraft Brood War Minimap Preview Remote Denial of Service Vulnerability

StarCraft Brood War is prone to a remote denial-of-service vulnerability because the application fails to handle exceptional conditions.

Attackers can exploit this issue to crash the affected application, denying service to legitimate users.

This issue affects StarCraft Brood War 1.15.1; prior versions may also be affected.

Blizzard Entertainment StarCraft Brood War Minimap Preview Remote Denial of Service Vulnerability

The following sample exploit is available:

• /data/vulnerabilities/exploits/SC_PoC_DoS.scm

Blizzard Entertainment StarCraft Brood War Minimap Preview Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Blizzard Entertainment StarCraft Brood War Minimap Preview Remote Denial of Service Vulnerability

References:

• StarCraft Brood War Homepage (Blizzard Entertainment)
  
• [HISPASEC] Blizzard StarCraft Brood War 1.15.1 Remote DoS ([email protected])