Unreal, the game-engine used to power many of the best first-person shooters on the market (including "Star Trek: The Next Generation: Klingon Honor Guard" and, funnily enough, "America's Army") has had known, dangerous security holes for five years. These vulnerabilities leave machines running the game — Macs, Linuxen and WinTel — open to attacks such as:
* Local and remote denial of service.
* Distributed denial of service (flooding remote computers with data packets to freeze it).
* Bounce attacks with spoofed UDP packets. (This is how attackers can flood a server without using all of their bandwidth. It creates a data transfer loop within the targeted computer.)
* Most importantly, PivX says, the holes could allow the execution of malicious code on a targeted computer.
(via /.)