Feeds

GameSpy could let crackers mount network DDoS attacks

Hidden hints and cheats for crackers

  • alert
  • submit to reddit

Intelligent flash storage arrays

Flaws within GameSpy, a popular program that allows game clients to find and connect to game servers, might permit crackers to flood systems with useless packets and tie up processors through DDoS attacks.

The vulnerability, which affects many games across Windows and *nix server platforms, is based upon spoofed UDP requests, as an advisory by security research outfit PivX Solutions (which made public its research yesterday) explains.

Affected applications include Battlefield 1942 Server, Quake, Quake 2, Q3: Arena & Team Arena, Half-Life, Counter-Strike, Unreal Tournament 2003, and Return to Castle Wolfenstein... and more, according to the alert.

"As a basic rule of thumb, if it supports GameSpy, it will likely be vulnerable," said Mike Kristovich, a security researcher for PivX Solutions, who first identified the vulnerability.

Testing by PivX with Battlefield 1942 Server illustrates the mechanism of the attack and its potential potency, an attacker with a dial up connection might easily disrupt a game servers and prevent access by legitimate gamers (irrespective of whether they use a personal firewall).

"The attack does not only affect the bandwidth of the host and the victim, but it also tends to eat up a nice chunk of memory and CPU power on the server. Also, a side effect seems to be the server losing all its players, either by assuming their connection died or the players dropping the connection due to lag," Kristovich explains.

PivX has published proof of concept code to back up its warning.

Electronic Arts (publisher of many of the games involved) was notified of the problem on November 20, 2002. PivX is yet to receive a response from EA.

Although there isn't yet a fix from GameSpy, PivX says a patch is planned. ®

External Links

Multi-vendor Game Server DDoS Vulnerability, advisory by PivX

Related Stories

Intel Masters games tourney is 'shambles'
Honduras bans Quake etc.
Buffer overflow bug shakes Quake

Top 5 reasons to deploy VMware with Tegile

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.