####################################################################### Luigi Auriemma Application: Blitzkrieg 2 http://www.blitzkrieg2.de Versions: <= 1.21 Platforms: Windows Bug: player disconnection and server interruption Exploitation: remote, versus server and clients Date: 02 Nov 2005 Author: Luigi Auriemma e-mail: aluigi@autistici.org web: aluigi.org ####################################################################### 1) Introduction 2) Bug 3) The Code 4) Fix ####################################################################### =============== 1) Introduction =============== Blitzkrieg 2 is the recent RTS game developed by Nival Interactive (http://www.nival.com) and published by CDV Software Entertainment (http://www.cdv.de). It has been released at September 2005. ####################################################################### ====== 2) Bug ====== A very simple bug: the command 09 is used to kick a player or leave a server but this same command can be also sent directly to any Blitzkrieg 2 host, both clients and servers. The result is the immediate disconnection of the player from the server with the message "You were kicked". In case the player is the server's admin the multiplayer match will automatically terminate after some seconds of idle gaming. ####################################################################### =========== 3) The Code =========== http://aluigi.org/poc/blitz2out.zip ####################################################################### ====== 4) Fix ====== No fix. No reply from the developers. #######################################################################