NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2004-q4

[SA13569] GamePort Two Security Bypass Vulnerabilities

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Tue Dec 21 2004 - 09:50:26 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
GamePort Two Security Bypass Vulnerabilities

SECUNIA ADVISORY ID:
SA13569

VERIFY ADVISORY:
http://secunia.com/advisories/13569/

CRITICAL:
Less critical

IMPACT:
Security Bypass

WHERE:
Local system

SOFTWARE:
GamePort 4.x
http://secunia.com/product/4443/

DESCRIPTION:
amoXi and Dr.vaXin have discovered two security issues in GamePort,
which can be exploited by malicious, local users to bypass some
security restrictions.

1) Insufficient validation of the password field on the client can be
exploited to disable the credits countdown by appending a specially
crafted string to a valid password when logging in.

2) Insufficient validation in the "Send message to user..." option on
the server can be exploited to execute remote applications and change
the admin password on clients without knowing the admin password.

Successful exploitation requires physical access to the Gameport
server.

The security issues have been confirmed in version 4.0. Other
versions may also be affected.

SOLUTION:
Use another product.

PROVIDED AND/OR DISCOVERED BY:
amoXi and Dr.vaXin

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]