ToCA Race Driver Multiple Remote Format String And Buffer Overflow Vulnerabilities

ToCA Race Driver Multiple Remote Format String And Buffer Overflow Vulnerabilities

ToCA Race Driver is susceptible to multiple remote buffer overflow and format string vulnerabilities. These issues both stem from the improper use of the 'sprintf()' function.

The game utilizes 'sprintf()' to build strings for visualizing text data for the player. The incorrect usage of this function is exploitable in the public chat, and in the in-game server browser. Other locations may also be affected.

These vulnerabilities allow remote attackers to execute arbitrary machine code in the context of affected client applications. This may occur in either a broadcast, or unicast fashion.