[原文]Buffer overflow in a player logging function in the Tincat network library 2.x before 2.0.28, as used in games such as Sacred and The Settlers: Heritage of Kings, allows remote attackers to execute arbitrary code.
TinCat Network Library Player Logging Remote Overflow
Remote / Network Access
Loss of Integrity
A remote overflow exists in TinCat. TinCat has a flaw in the players logging function resulting in a buffer overflow. With a specially crafted request, an attacker can execute malicious code resulting in a loss of integrity.
Upgrade to version 2.0.28 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.