Hmm, I wonder if it's connected to the "they disabled my Steam Guard and stole my Steam account" issue. Over the last year I've heard about two different people who had this happen to them.
Comment has been collapsed.
It's very likely that it has never been abused in wild.
They would still need to capture your connection to Steam first (eg. hacking your ISP, modem, etc.) to able to abuse this.
If they already can listen on your connection, being able to crash Steam isn't your biggest problem.
Simply UDP spoofing might be possible depending on ISP but:
"In order for an attacker’s UDP packets to be accepted by the client, they must observe an outbound (client->server) datagram being sent in order to learn the client/server IDs of the connection along with the sequence number."
If your connection is secure, they can do nothing. If your connection isn't secure, you're already fucked up in other ways.
Comment has been collapsed.
And that's why you never setup a program to "Launch as an Administrator" if that program doesn't have a valid reason to do so.
I cringe every time someone suggests to do that when some software or game doesn't launch otherwise. If this ever went live, and people had Steam set up to "launch as an administrator" because X or Y game didn't work otherwise, an attacker could possibly have done anything they wanted on the remote machine. Anything.
Comment has been collapsed.
15,361 Comments - Last post 28 minutes ago by Channel28
1,366 Comments - Last post 50 minutes ago by Rfedneck
46,817 Comments - Last post 1 hour ago by Yuisis
555 Comments - Last post 1 hour ago by DaveFerret
77 Comments - Last post 2 hours ago by CRAZY463708
20 Comments - Last post 3 hours ago by quijote3000
1,290 Comments - Last post 3 hours ago by quijote3000
261 Comments - Last post 31 seconds ago by Panzerschreck
6,760 Comments - Last post 13 minutes ago by Metalhead8489
12 Comments - Last post 18 minutes ago by Adelion
1 Comments - Last post 19 minutes ago by Wintermute75
115 Comments - Last post 36 minutes ago by Wintermute75
44 Comments - Last post 45 minutes ago by Prosac
220 Comments - Last post 1 hour ago by aRo93
that was there for 10+ years! :
http://www.guru3d.com/news-story/valve-patched-massive-vulnerability-in-steam-(that-was-there-for-10-years).html
P.S : The most terrifying launch of a calculator app ever seen.
Comment has been collapsed.