Exploit In Quake 3 Engine

A reported hack has been publicly released which allows serverhosts with bad intentions to take over a users computer. It grants the hacker full access to your pc - with Punkbuster currently forcing players to have admin rights whilst playing.

This exploit effects all Quake 3 engine games, including Quake 3, Enemy Territory and RTCW.

Cash on the GGL site explains that:
QuoteTechnically, the leak creates a unsuspicious "boundary error" when sending malformed messages from the gameserver to a client during the remapShader process. Once a buffer overflow occurs, the computer is fully exposed to any type of activities.

It does not require a user to download anything from the server, the serverhost simply has to run the script.
Comments
0
Back to top