Don't Let The America's Army Vulnerabilities Defeat You!

"Accept the challenges so that you can feel the exhilaration of victory." this is a typical quote relating to the strategy of fighting in the army. Technology has advanced to such great lengths that it is possible to simulate, any human activity with the inclusion of an army online world. This is exactly what has been done and today anyone can enjoy America's Army which is a popular game that was initially developed by the United States Army. The latest news is that some vulnerabilities have been reported in America's Army, but do not despair as this is a war that can be fought. No one's machine is dead yet and no one's machine has to die, in order to defeat your opponent you need to know as much as you can about your opponent.

Americas Army has many fun features and with the latest version you are able to earn medals, badges, a distinguished status as well as the ability to rank up like in the real army. You can enjoy the many wonderful benefits pertaining to this game if you have the correct operating system. If you are using Windows Vista you are safe and able to start your war in the army. Some of the files of Windows Vista include the following: arunimg.dll, bootsect.exe, cscmig.dll, diagnostic.dll and rollback.exe.

Some of the multiple vulnerabilities that you need to fight in America's Army:

1. There is an error in the handling of multiple players linking the server. This can be exploited in order to create a brutal crash. This is done by sending multiple packets to port number 8777/UDP.
2. There is an error with the handling of queries which can be exploited in order to cause the server to enter a loop of sending error messages. This may cause high network traffic and can be done by sending crafted packets to port number 39300/UDP.
3. There is a null pointer dereference error within the processing of specific data types. This runs the risk of being exploited in order to cause a crash. Attackers will need to send various manipulated packets to port number 9300/UDP.
4. There is an error in the processing of string size values. This runs the risk of being exploited in order to cause a brutal crash. This may be done by sending a specially tampered with packet that contains negative string size values to port number port 39300.
5. There is an error with the processing of specific fields of data; these may be exploited in order to cause a brutal crash. This can be achieved by sending a specially tamped with packet that contains a negative fragment number to port 39300/UDP.

Table 1. The impacts of this vulnerability

I am now going to inform you as to which version this vulnerability has affected. This vulnerability has been confirmed in version 3.0.5. All past, present and future America's Army gamers need to be aware of the fact that other versions may also be affected. Now for the big question, what can you do in order to be a true army player and defeat these vulnerabilities? The strategic way to fight your enemies in this war is to only play multi player games on local networks that you trust. Good luck to you all and let this be one war that you win.