exploit found in unreal engine!

[Adair]

It appears that an vulnerability has been found in all unreal engine games going all the way back to the original Unreal. This allows unreal engine games to be vulnerable to DoS, DDoS, and bounce attacks with spoofed UDP packets. Go to Blue's News to read more on this.

Here's the somewhat bizarre PR statement from Mark Rein:

Quote:

I won't sugar coat this. We f***ed up on this. Yes this is real and yes this was brought to our attention and yes we should have fixed it by now. We are working on fixing this now and we will have this fixed in an upcoming patch before too long.

[Sir Key]

what is this DoS/ DDoS or UDP??? can anyone explain what exactly was that bug??

[Kane]

Denial of Service IIRC. UDP is a network protocol.

[Sir Key]

so what does it do???? and what is the problem? (demigod your help is needed!! )

[Adair]

I don't know alot about it either, but from what I gather the bounce attack would allow any other player(who knew how to launch these attacks) to boot you out of a game at their will. I could be wrong though.
DoS attacks I think can be quite serious hacking and isn't necessarily limited to messing up your game. Someone told me what it was once, but I can barely remember what they said. IIRC its something where they(the hacker) sends text messages, or more likely dos commands that carry out some purpose, at you so fast that it takes up massive amounts of processor cycles. Again, I could be completely wrong.

[Sir Key]

*harrrr*..... DE-MI-GOD!! DE-MI-GOD!! DE-MI-GOD!!!!

UDP is just another method of sending Data, Instead of Using the TCP protocol. UDP uses packets, which send data in short packet bursts rather than your standard TCP Data stream.

UDP packets are much more efficient way to send data when the data is ever changing (Basically any Online Game is most likely using UDP packets, (Aka Diablo 2, Warcraft and Neverwinter Nights all use UDP packets because they are the most efficient way to send dynamic Game Data.

The problem with UDP packets is. If someone were to find a hole in your firewall. or Ports. Your IP can be bombarded with UDP packets. Thus Increasing your ping and making internet browsing impossible.

Hope that helps some Hybrid. Basically Dos attacks are two things. UDP packet bombs and and packet sniffers which can sniff around your system. The problem is.

Your firewall probably won't be able to protect you in this because the people will be using the same ports that you have to open to play this game.

[Sir Key]

so this means i should better stop playing ut2k3 online for a while??

[Player-X]

Nope it means watch out for h4x0rs

Quote:

Originally posted by hybrid23
so this means i should better stop playing ut2k3 online for a while??

Unless you make a habit of pissing people off regularly. I doubt you have much to worry about.

[Demigod]

As ChrisRay explained, denial of service (DoS) attacks deny a user access to a certain service. It can be done in various ways and the attacks make the service unavailable (or interrupt the service in a significant way) so that the user is unable to use it. I recently encountered such an attack with my internet connection. I was being bombarded with huge amounts of data such that I was unable to use the internet.

In the case of spoofed UDF packets the return address of the packets are "spoofed" so that the packets return to someone else. This can increase traffic significantly for the target host (the person receiving the spoofed packets) and if great enough it can make real traffic indistinguishable from junk traffic and essentially disconnect the user from the network.

You can read more about DoS attacks here

[N1ghtw0lf]

I still don't get wht exactly this is supposed to do...the worst thing someone could do is shut off your game or something???