![]() LukeYui has made numerous reports about cheats and vulnerabilities in Dark Souls 3 to Bandai Namco. It’s unclear if this issue, as well as the other 100+ known cheats in Dark Souls 3, will be patched alongside the vulnerability that caused the removal of the Dark Souls servers. This RCE is different to the one that was widely reported on last week and was still present in Dark Souls 3 until its servers were removed. ![]() “My main reason for not being surprised is that I also reported an RCE to Bandai Namco in early 2020 and was met with the exact same radio silence,” Reddit user LukeYui tells us, who has since requested a CVE ID for the exploit. While this issue has now been acknowledged, some within the Dark Souls community were not surprised about its discovery. This worked, as PvP servers for Dark Souls: Remastered, Dark Souls 2 and Dark Souls 3 were deactivated on January 23, as From Software announced it was working on a fix for the issue. Over one month later, and disappointed with the lack of action for such a serious security vulnerability, the person that found this RCE organised a stunt in which the exploit was performed in a non-malicious way on Twitch to capture the studio’s attention so they would be forced to address it. “Another member of the Dark Souls community told VGC they made the games’ publisher aware of a second, yet to be made public RCE as far back as in 2020 and that it remains unfixed.”īoth emails were acknowledged by Bandai Namco’s support team, the first on Dec 11, and the second on Dec 16, with the customer service rep saying the information had been “sent to the dedicated teams so they can investigate and take the necessary measures.” In correspondence seen by VGC, the person that discovered the latest RCE vulnerability, who wishes to remain anonymous, reported the issue via email to Bandai Namco’s support team and spent several days putting together a PDF document in a follow-up email detailing the vulnerabilities and how to fix them, along with links demonstrating the RCE in action. These range from game crashes and corrupt save data to in the most serious cases, RCE vulnerabilities, that allow malicious players to take control of the host’s PC where they can access sensitive data or install malware. Many of these will only affect PC players but can cause a variety of issues. VGC has been told there are over 100 cheats, hacks and security vulnerabilities within Dark Souls 3, some of which are listed here. The person who discovered the latest RCE alleges that there are serious issues with all of the Souls games’ shared network infrastructure and said they believe it’s “inevitable” that Elden Ring will feature many of the same exploits, which will “probably be ported without issues and used on release by malicious cheaters.” ![]() One of the people behind the discovery of the vulnerability told VGC they had made Bandai Namco aware of the issue over a month earlier, and that neither the publisher nor developer From acted upon the warning until it was made public in a last-ditch attempt to provoke action:Īnother member of the Dark Souls community told VGC they made the games’ publisher aware of a second, yet to be made public RCE as far back as in 2020 and that it remains unfixed. Over a week later, Dark Souls’ PC servers remain offline and there’s no word on when they’ll return. ![]() ![]() On January 23, Bandai Namco temporarily removed PvP servers for Dark Souls: Remastered, Dark Souls 2 and Dark Souls 3, following the discovery of a severe remote code execution (RCE) vulnerability, which was said to allow abusers to take control of other players’ PCs. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |