The article is two days old, so my apologies if it has been posted before (I did search before posting this). For all you online gamers out there, something to keep in mind.
http://news.com.com/2100-1040-981255.html?tag=fd_top
Snippet:
...Multiplayer game servers that let players attack each other in virtual worlds could be the latest tool for online scofflaws to digitally attack other computers on the Internet, a security firm said Thursday.
Seems like a packet magnification style DoS attack (vulnerable to spoofing).The flaw occurs because servers that include the GameSpy networking code automatically send responses to queries for status information and don't verify the sender's address. An attacker can just ask the server for the information, but forge the data so that the packets appear to come from a fake address. When the game server responds, the large amount of information sent in reply goes to the target of the attack instead.
/nebulus
Reply With Quote