![]() The EUD bug got its name from the mechanism it used to allow arbitrary read and write in the program’s memory. Among other things, it fixed a specific bug that had been dubbed “Extended Unit Death”, EUD. The patch notes simply stated “Fixed several bugs that contributed to game exploits”. In part two I will explain how I turned this into a CTF challenge and some of the solutions the teams came up with.Įight years after its release, on the 18th of January 2006, Starcraft patch version 1.13f was released. In this first blog post I will go through some background, explain the bug and the exploit I wrote for it. Last weekend, I sat down and wrote an exploit myself and also turned this into a challenge for the Midnight Sun CTF 2020 qualifiers. As long as I’ve known about the bug I had assumed it could be used for exploitation but I had never seen a public example of this. One of these bugs was an arbitrary read/write vulnerability in the parser for the scripts embedded in the maps of the game. ![]() However, like most software, it has had it fair share of bugs. ![]() Over 20 years later it still has a strong community and a remastered version was released in 2017 with updated graphics and sound. Starcraft, released in 1998, is still one of the best strategy games ever made.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |