Signature Detail
Short Name |
APP:GAME:DIRECTPLAY-NULL-PTR |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
DirectX DirectPlay Fake Player DOS Age of Wonders Shadow Magic Bandits Besieger Dangerous Waters Deer Hunter Dungeon Siege DXQuake FairStrike Freelancer G.I. Combat Giants: Citizen Kabuto Homeworld |
Release Date |
2010/08/12 |
Update Number |
1751 |
Supported Platforms |
idp-4.1+, isg-3.5+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
GAME: DirectPlay Null Pointer Denial of Service
This signature detects attempts to exploit a known vulnerability in DirectPlay, a component of DirectX 8. A malicious player can send malformed player join packets containing a null pointer, causing the server to crash.
Extended Description
Microsoft DirectX is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to interrupt existing sessions or crash or freeze the application that uses DirectX, resulting in denial-of-service conditions.
Affected Products
- Gabriel Interactive Robot Arena 2
- Gas Powered Games Dungeon Siege 2
- Microsoft DirectX 8.0
- Microsoft DirectX 8.0 a
- Microsoft DirectX 8.1
- Microsoft DirectX 8.1 a
- Microsoft DirectX 8.1 b
- Microsoft DirectX 8.2
- Microsoft DirectX 9.0
- Microsoft DirectX 9.0 a
- Microsoft DirectX 9.0b
- Microsoft DirectX 9.0 c
- PTERODON Vietcong
- Relic Entertainment Homeworld 2
- Southlogic Studios Deer Hunter 2004
- Southlogic Studios Deer Hunter 2005
References