Slashdot Mirror


Vulnerability Found In Skyrim, Fallout, Other Bethesda Games

An anonymous reader writes "The author of this article goes over a format string vulnerability he found in The Elder Scrolls series starting with Morrowind and going all the way up to Skyrim. It's not something that will likely be exploited, but it's interesting that the vulnerability has lasted through a decade of games. 'Functions like printf() and its variants allow us to view and manipulate the program’s running stack frame by specifying certain format string characters. By passing %08x.%08x.%08x.%08x.%08x, we get 5 parameters from the stack and display them in an 8-digit padded hex format. The format string specifier ‘%s’ displays memory from an address that is supplied on the stack. Then there’s the %n format string specifier – the one that crashes applications because it writes addresses to the stack. Powerful stuff.'"

1 of 179 comments (clear)

  1. Re:Whats the purpose of this by Khyber · · Score: -1, Flamebait

    "Looking at it's two processes right now, it's barely using 11MB of system RAM.."

    Just did a fresh startup of Steam - 110MB Steam.exe

    Very likely your low usage is because you don't have a FUCKHUGE library of games.

    You may want to get your facts straight and understand how the system actually works before you go making yourself look like a fool by posting something as if it's fact when in reality it's a VARIABLE.

    --
    Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.