Recently, I posted a proof of concept Kaillera server on Exploit-db. This Kaillera server exploits vulnerabilities in 3 kaillera clients.
Normally when a vulnerability is reported, the software developer has the opportunity to fix the problem. Unfortunately, none of the Kaillera clients have been actively updated.
Therefore, a friend and I have created p2pkaillera, a Google code project where we've fixed the security problems exploited by my proof of concept perl script.
The first update we've created is for the Open Kaillera client on sourceforge, fixing several buffer overflow vulnerabilities in that client, and can be downloaded here.
If you use Kaillera, watch that Google code site for updates to your favorite clients. They're unofficial but they will be useful for security updates so players can continue to have a safe environment.
No comments:
Post a Comment