Note:
This project will be discontinued after December 13, 2021. [more]
2015-05-20
The client detection protocol in Valve Steam allows remote attackers to cause a denial of service (process crash) via a crafted response to a broadcast packet.
| Products | Steam_client |
| Type | Improper Input Validation (CWE-20) |
| First patch | - None (likely due to unavailable code) |
| Links |
• http://www.zerodayinitiative.com/advisories/ZDI-15-233/
• http://www.securityfocus.com/bid/74735 • http://store.steampowered.com/news/16801/ |