Hmm, I wonder if it's connected to the "they disabled my Steam Guard and stole my Steam account" issue. Over the last year I've heard about two different people who had this happen to them.
Comment has been collapsed.
It's very likely that it has never been abused in wild.
They would still need to capture your connection to Steam first (eg. hacking your ISP, modem, etc.) to able to abuse this.
If they already can listen on your connection, being able to crash Steam isn't your biggest problem.
Simply UDP spoofing might be possible depending on ISP but:
"In order for an attacker’s UDP packets to be accepted by the client, they must observe an outbound (client->server) datagram being sent in order to learn the client/server IDs of the connection along with the sequence number."
If your connection is secure, they can do nothing. If your connection isn't secure, you're already fucked up in other ways.
Comment has been collapsed.
And that's why you never setup a program to "Launch as an Administrator" if that program doesn't have a valid reason to do so.
I cringe every time someone suggests to do that when some software or game doesn't launch otherwise. If this ever went live, and people had Steam set up to "launch as an administrator" because X or Y game didn't work otherwise, an attacker could possibly have done anything they wanted on the remote machine. Anything.
Comment has been collapsed.
135 Comments - Last post 13 minutes ago by derton2000
482 Comments - Last post 28 minutes ago by dadel
43 Comments - Last post 38 minutes ago by LittleBibo1
265 Comments - Last post 5 hours ago by Gyatsuku
356 Comments - Last post 6 hours ago by Gyatsuku
277 Comments - Last post 6 hours ago by Gyatsuku
490 Comments - Last post 6 hours ago by Gyatsuku
4,599 Comments - Last post 5 seconds ago by gus09
90 Comments - Last post 11 minutes ago by BabyDragon
17,515 Comments - Last post 12 minutes ago by Agaster
3 Comments - Last post 12 minutes ago by Lugum
99 Comments - Last post 13 minutes ago by xurc
19 Comments - Last post 16 minutes ago by DeliberateTaco
41 Comments - Last post 17 minutes ago by LieEater
that was there for 10+ years! :
http://www.guru3d.com/news-story/valve-patched-massive-vulnerability-in-steam-(that-was-there-for-10-years).html
P.S : The most terrifying launch of a calculator app ever seen.
Comment has been collapsed.