Hmm, I wonder if it's connected to the "they disabled my Steam Guard and stole my Steam account" issue. Over the last year I've heard about two different people who had this happen to them.
Comment has been collapsed.
It's very likely that it has never been abused in wild.
They would still need to capture your connection to Steam first (eg. hacking your ISP, modem, etc.) to able to abuse this.
If they already can listen on your connection, being able to crash Steam isn't your biggest problem.
Simply UDP spoofing might be possible depending on ISP but:
"In order for an attacker’s UDP packets to be accepted by the client, they must observe an outbound (client->server) datagram being sent in order to learn the client/server IDs of the connection along with the sequence number."
If your connection is secure, they can do nothing. If your connection isn't secure, you're already fucked up in other ways.
Comment has been collapsed.
And that's why you never setup a program to "Launch as an Administrator" if that program doesn't have a valid reason to do so.
I cringe every time someone suggests to do that when some software or game doesn't launch otherwise. If this ever went live, and people had Steam set up to "launch as an administrator" because X or Y game didn't work otherwise, an attacker could possibly have done anything they wanted on the remote machine. Anything.
Comment has been collapsed.
152 Comments - Last post 6 minutes ago by adam1224
213 Comments - Last post 41 minutes ago by possom2009
27 Comments - Last post 55 minutes ago by pizzahut
15 Comments - Last post 1 hour ago by Thexder
348 Comments - Last post 1 hour ago by Zepy
75 Comments - Last post 3 hours ago by Pika8
32 Comments - Last post 4 hours ago by sallachim
38 Comments - Last post 2 minutes ago by SergeD
36 Comments - Last post 2 minutes ago by coleypollockfilet
2,201 Comments - Last post 13 minutes ago by jaaydee
48 Comments - Last post 19 minutes ago by RGVS
502 Comments - Last post 23 minutes ago by GreyF0xx
208 Comments - Last post 50 minutes ago by KilluaZoldyck
169 Comments - Last post 53 minutes ago by wigglenose
that was there for 10+ years! :
http://www.guru3d.com/news-story/valve-patched-massive-vulnerability-in-steam-(that-was-there-for-10-years).html
P.S : The most terrifying launch of a calculator app ever seen.
Comment has been collapsed.