Grand Theft Auto V exploit assigned CVE number due to partial RCE

Grand Theft Auto V exploit assigned CVE number due to partial RCE(cve.mitre.org)

62 points by blackhole 3 years ago | 39 comments

aborsy 3 years ago |

These games have tens of millions of lines of code (often building on top of the older components). They are also written in memory unsafe C++, by developers focused on features and rapid sales, to users that look forward to new features not better security.

I won’t be surprised at all if they are filled with vulnerabilities.

minneelyyyy 3 years ago | |

Uhhh, GTA V has been known for bad security for a long time. Streamers can't even play the game without a VPN or they get their IP leaked. Single-player games can (could, maybe still can? I am unsure of the current state of the game) get hacked and be messed with by hackers. This goes far beyond just "they used C++." This shows a great lack of caring for security in general from Rockstar, not just another thing that you can use to prove to yourself that "C++ is dangerous!"

mirages 3 years ago | |

https://www.gamedeveloper.com/programming/dirty-game-develop...

Look at "(s)elf-exploitation"

mjg59 3 years ago |

I feel like I'm missing something here, but: the references are two support forum threads and a reddit thread, both of which link back to the referenced twitter thread? Is there any actual confirmation that this RCE exists? What does "partial RCE" even mean?

lfodofod 3 years ago | |

It really appears that this CVE was issued based on that super vague twitter thread.

culi 3 years ago |

RCE: remote code execution

CVE #: Common Vulnerabilities and Exposures number, assigned by the MITRE Corporation

wnevets 3 years ago |

I'm surprised more exploits aren't being found in games, they're usually thrown together as quickly as possible.

tialaramex 3 years ago | |

Ordinarily there's no reason why you would "attack" the game, so things only get found if a significant community arises for the game which would benefit, e.g. speed running Mario 64 is a thing, so figuring out weird details of the engine is crucial to the best possible times in categories which allow you to break the game to win.

For a Remote Code Execution bug like this it only makes sense if it's a popular multiplayer game, so that there are enough targets to be worth attacking, for long enough after release that you can identify a bug and figure out how to abuse it.

GTA V is like a decade old at this point, there a very few games with that sort of longevity, we're talking Minecraft, WoW, big hits rather than the average video game.

wnevets 3 years ago | | |

Video games being connected to the internet 24/7 are quickly becoming the norm. I am convinced there is a treasure trove of exploits created by the gaming industry just waiting to be found.

jeoqn 3 years ago | | |

Little reason to attack the game? How about knocking your enemies offline? Or getting their game or real money? Or recruit them for your DoS botnet? Because that’s what an RCE allows you to do…

thatguy0900 3 years ago | |

If you are exploiting the games it's easy to make money by selling cheats in the game, probably keeps people from looking for crypto ransom payoffs as much

jamesfinlayson 3 years ago | |

I assume most of the reverse engineering being done on games is with an eye to developing cheats rather than attacking players.

Scaevolus 3 years ago |

GTA V has averaged >100k concurrent players on steam for the last 3 years, so a RCE has a lot of potential targets ripe for exploitation.

ehnto 3 years ago | |

It only needs to make it into a mod-menu to get wide, unsuspecting distribution.

For those curious, mod menus are what "hackers" use to exploit the gameplay for fun. Script-kiddies are a good analog in history. They're often just kids who googled GTA hacks and installed from the first page they thought looked cool. They'll be prime targets for distribution.

dns_snek 3 years ago | | |

Interestingly enough, it seems like some of these "mod menus" have already patched the exploit. Having one of these is almost a requirement for playing GTA Online these days, purely for the defensive features they offer against other cheaters. It's still a mess and requires trust (or a VM).

joshspankit 3 years ago | | |

Just like script-kiddies back in the day, the easiest vector of attack is to distribute infected “hacking” tools

rektide 3 years ago |

FWIW,

> CVE-2023-24059

What other video games have had CVE's?