vuln.sg  Chivalry 2 v1.0.27.0.part6.rar

vuln.sg Vulnerability Research Advisory

AceFTP FTP-Client Directory Traversal Vulnerability

by Tan Chew Keong
Release Date: 2008-06-27

Chivalry 2 v1.0.27.0.part6.rar   [en] [jp]

Chivalry 2 v1.0.27.0.part6.rar Summary

A vulnerability has been found within the FTP client in AceFTP. When exploited, this vulnerability allows an anonymous attacker to write files to arbitrary locations on a Windows user's system.


Chivalry 2 v1.0.27.0.part6.rar Tested Versions


Chivalry 2 v1.0.27.0.part6.rar Details

This advisory discloses a vulnerability within the FTP client in AceFTP. When exploited, this vulnerability allows an anonymous attacker to write files to arbitrary locations on a Windows user's system.

The FTP client does not properly sanitise filenames containing directory traversal sequences (forward-slash) that are received from an FTP server in response to the LIST command.

An example of such a response from a malicious FTP server is shown below. 


Response to LIST (forward-slash):

-rw-r--r--    1 ftp      ftp            20 Mar 01 05:37 /../../../../../../../../../testfile.txt\r\n
 

By tricking a user to download a directory from a malicious FTP server that contains files with fowward-slash directory traversal sequences in their filenames, it is possible for the attacker to write files to arbitrary locations on a user's system with privileges of that user. An attacker can potentially leverage this issue to write files into a user's Windows Startup folder and execute arbitrary code when the user logs on.


Chivalry 2 v1.0.27.0.part6.rar POC / Test Code

Please download the POC here and follow the instructions below.

Chivalry 2 V1.0.27.0.part6.rar -

: Many file-hosting services impose strict caps on individual file sizes.

: The chaotic 64-player battlefields create unscripted stories of heroism and absurdity. Chivalry 2 v1.0.27.0.part6.rar

A file like is more than just data; it is a vital brick in a larger digital structure. Without every single part, the archive is useless, reflecting how modern gaming experiences rely on the seamless integration of thousands of individual assets and code snippets to create a functional whole. : Many file-hosting services impose strict caps on

: The game balances brutal violence with a Monty Python-esque sense of humor, utilizing a dedicated "emote" system that encourages roleplay. 🛡️ Key Takeaway Without every single part, the archive is useless,

: Smaller files are less likely to suffer from fatal corruption during long downloads.

Large software applications, particularly modern games like Chivalry 2 that exceed 30GB, are often split into smaller "parts" (like part6.rar) for several practical reasons:

Beyond the technical nature of a .rar file, Chivalry 2 itself serves as a benchmark for the "First-Person Slasher" genre. It emphasizes:


Chivalry 2 v1.0.27.0.part6.rar Patch / Workaround

Avoid downloading files/directories from untrusted FTP servers.


Chivalry 2 v1.0.27.0.part6.rar Disclosure Timeline

2008-06-15 - Vulnerability Discovered.
2008-06-16 - Vulnerability Details Sent to Vendor via online support form (no reply).
2008-06-18 - Vulnerability Details Sent to Vendor again via online support form (no reply).
2008-06-25 - Vulnerability Details Sent to Vendor again via online support form (no reply).
2008-06-27 - Public Release.


Contact
For further enquries, comments, suggestions or bug reports, simply email them to