Solution for bugtraq id 10570 (Epic Games Unreal Engine Memory Corruption Vulnerability)

To: <bugtraq@xxxxxxxxxxxxxxxxx>, <bugs@xxxxxxxxxxxxxxxxxxx>, <news@xxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Solution for bugtraq id 10570 (Epic Games Unreal Engine Memory Corruption Vulnerability)
From: "Gerco Dries" <gerco@xxxxxxxxxx>
Date: Wed, 23 Jun 2004 20:09:25 +0200
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Thread-index: AcRZTGyC24goJaJnQvCqpwPLp1fTlQAAKv2g

Hi everyone,

I have created a simple UnrealScript patch for this vulnerability in Unreal
Tournament v436 and v451(b). As far as I know it does not negatively affect
the functioning of the "\secure\" query or anything else, but it has not
been extensively tested.

You can download the patch at http://www.gdries.com/IpServer.u .

I will attempt to create a UT2003 version of the patch as well if Epic/Atari
doesn't provide one in a few days. 

Regards,
Gerco Dries.

Prev by Date: Spammer jailed
Next by Date: vBulletin HTML Injection Vuln
Previous by thread: Spammer jailed
Next by thread: vBulletin HTML Injection Vuln
Index(es):
- Date
- Thread