<<< Date Index >>>     <<< Thread Index >>>

Update: Clients buffer-overflow in Live for Speed 0.5X10



New patch, old bug.

The Y patch has been released a couple of days ago but the lfscbof
buffer-overflow vulnerability is still there, so any player can crash the
others using the same old proof-of-concept I released two months and
half ago:

  http://aluigi.org/adv/lfscbof-adv.txt
  http://www.youtube.com/watch?v=jZea65fOhPY


--- 
Luigi Auriemma
http://aluigi.org