Three critical vulnerabilities have been discovered in RenderDoc, a graphics debugger that supports multiple operating systems, including Windows, Linux, Android and Nintendo Switch. As per the findings of cybersecurity specialists from Qualys Threat Research Unit (TRU), a trio of vulnerabilities has been identified, comprising one instance of privilege escalation and two heap-based buffer overflows.
Joe Saunders, CEO, RunSafe Security had this to say:
The gaming industry is exposed to Memory-based attacks that put users at risk just as our critical infrastructure is at risk to similar memory-based exploits. Fixing and patching is a losing game and it takes too long and costs too much money to rewrite code in memory safe languages. Gaming companies should deploy memory based protections by inserting defenses within the code and protect the software even when a patch is not available.
Addressing issues in video games is important because it not only affects the gamer’s experience. But it opens the door to cheaters. Both of which are of course bad. Thus it deserves game companies time and attention.
Like this:
Like Loading...
Related
This entry was posted on June 7, 2023 at 8:04 am and is filed under Commentary with tags Qualys. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Three Vulnerabilities Have Been Discovered In Game Development Tool RenderDoc
Three critical vulnerabilities have been discovered in RenderDoc, a graphics debugger that supports multiple operating systems, including Windows, Linux, Android and Nintendo Switch. As per the findings of cybersecurity specialists from Qualys Threat Research Unit (TRU), a trio of vulnerabilities has been identified, comprising one instance of privilege escalation and two heap-based buffer overflows.
Joe Saunders, CEO, RunSafe Security had this to say:
The gaming industry is exposed to Memory-based attacks that put users at risk just as our critical infrastructure is at risk to similar memory-based exploits. Fixing and patching is a losing game and it takes too long and costs too much money to rewrite code in memory safe languages. Gaming companies should deploy memory based protections by inserting defenses within the code and protect the software even when a patch is not available.
Addressing issues in video games is important because it not only affects the gamer’s experience. But it opens the door to cheaters. Both of which are of course bad. Thus it deserves game companies time and attention.
Share this:
Like this:
Related
This entry was posted on June 7, 2023 at 8:04 am and is filed under Commentary with tags Qualys. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.