GameSpy could let crackers mount network DDoS attacks

Published by

Neowin.net reports that Flaws within Gaspy , a popular program that allows game clients to find and connect to game servers, might permit crackers to flood systems with useless packets and tie up processors through DDoS attacks. The vulnerability, which affects many games across Windows and *nix server platforms, is based upon spoofed UDP requests, as an advisory by security research outfit PivX Solutions (which made public its research yesterday) explains. Affected applications include Battlefield 1942 Server, Quake, Quake 2, Q3: Arena & Team Arena, Half-Life, Counter-Strike, Unreal Tournament 2003, and Return to Castle Wolfenstein... and more.