Description
Battlefront Dropteam 1.3.3 and earlier sends the client's online account name and password to the game server, which allows malicious game servers to steal account information.
Affected products
References
- MISChttp://aluigi.altervista.org/adv/dropteamz-adv.txt
- MISChttp://www.securityfocus.com/archive/1/481616/100/0/threaded
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/36978
- MISChttp://www.securityfocus.com/bid/25943
- VENDOR_ADVISORYhttp://secunia.com/advisories/27107
- MISChttp://securityreason.com/securityalert/3202