Security issue in Java based server
#13
Well since we limit packet size to 32 KiB I suggest 512 KiB as a limit. Most non-pathological structured data has a less than 10:1 compression ratio so having a limit of 16 times compressed size seems reasonable. Limiting this in the NBT parser could be as simple as limiting the size of cFastNBT::m_Tags to a sensible value. Can I suggest 1,000?

Recursion depth for NBT was more of a general issue as if you can jump the guard page it allows the attacker to write arbitrary data to memory.
Reply
Thanks given by:


Messages In This Thread
Security issue in Java based server - by Jammet - 04-17-2015, 09:48 PM
RE: Security issue in Java based server - by xoft - 04-17-2015, 10:10 PM
RE: Security issue in Java based server - by xoft - 04-17-2015, 10:32 PM
RE: Security issue in Java based server - by xoft - 04-17-2015, 10:59 PM
RE: Security issue in Java based server - by xoft - 04-17-2015, 11:05 PM
RE: Security issue in Java based server - by xoft - 04-18-2015, 10:09 PM
RE: Security issue in Java based server - by xoft - 04-19-2015, 02:33 AM
RE: Security issue in Java based server - by worktycho - 04-19-2015, 03:04 AM



Users browsing this thread: 2 Guest(s)