Squirrel Gaming Language Allows Hackers to Inject Code into Games

  • By Dawna M. Roberts
  • Oct 28, 2021

Threatpost reported this morning that a vulnerability in the Squirrel programming language could allow bad actors to execute malicious code within a gaming virtual machine (VM), giving them complete control over it.

What is the Threat?

Threat researchers discovered an out-of-bounds read vulnerability this week affecting the Squirrel gaming language and millions of players of online games such as Counter-Strike, Global Offensive, and Portal 2, and some cloud-based services as well.

Threatpost explains,

“Given where Squirrel lives – in games and embedded in the internet of things (IoT) – the bug potentially endangers the millions of monthly gamers who play video games such as Counter-Strike: Global Offensive and Portal 2, as well as cloud services IoT platforms with ready-to-use open-source code library.”

What is Squirrel?

Squirrel is an open-source, object-oriented programming language employed in the development of many popular games and online cloud services. “It’s a lightweight scripting language that suits the size, memory bandwidth, and real-time requirements of applications like video games and embedded systems,” Threatpost adds.”

The vulnerability has been coded as CVE-2021-41556 and is an out-of-bounds read flaw that bad actors may use to execute malicious commands within certain video games.

Squirrel Allows Hackers to Inject Code into Games

Threatpost explains how the flaw was discovered,

 “The vulnerability was discovered by SonarSource and detailed in a post published on Tuesday. In that writeup, vulnerability researchers Simon Scannell and Niklas Breitfeld suggested a real-world scenario in which an attacker could embed a malicious Squirrel script into a community map and distribute it via the trusted Steam Workshop: a mod repository for Steam Games that lets creators upload their mods for a massive built-in audience while providing regular players with an easy way to obtain mods.”

Threat researchers added,

“When a server owner downloads and installs this malicious map onto his server, the Squirrel script is executed, escapes its VM, and takes control of the server machine.”

The Technical Details

Threatpost explains the technical details,

“The security flaw concerns an “out-of-bounds access via index confusion” when defining Squirrel classes. “The fact that bitflags are set within indexes is problematic as it is entirely possible for an attacker to create a class definition with 0x02000000 methods,” the researchers explained. They created the following, “very simple” proof of concept (PoC): just a nibble’s worth of code that could be exploited to hijack a program and grant an attacker full control of the Squirrel VM.”

“The rawset and rawget functions allow us to handily access members of a given class,” according to the analysis. “In this PoC, the squirrel interpreter will dereference a null pointer and segfault because the _defaultvalues array has not been allocated yet.”

The danger is that a hacker could use the flaw to set up a fake array allowing them control over read and write values. In a proof-of-concept experiment, threat researchers were able to duplicate the event and could essentially “hijack the control flow of the program and gain full control of the Squirrel VM.”

How Can Game Players Stay Safe?

Thankfully, back in August, the maintainer of the Squirrel GitHub repository used this information to patch the vulnerability and uploaded a new source code on September 16.

Programmers should immediately update to the latest patched version. In addition, threat researchers urge all game developers to update to the newest fix commit to protect against these types of attacks.

Additionally, game players should:

  • Only download games from reputable sources.
  • Keep your games updated to the latest security patch.
  • Keep all operating systems updated.
  • Use good strong antivirus on all devices. 
  • Use long, strong passwords on all accounts.
About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “A ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

What is an Incident Response?

What is an Incident Response?

What is an Incident Response? After a bank heist, the work begins with specialized teams and plans engaged, allowing for analysis of the event, and from this analysis, the bank can prepare a response to the incident.

What is a Social Engineering Attack? Techniques and Ways to Prevent

What is a Social Engineering Attack? Techniques and Ways to Prevent

Everyone has received a spam text or email at some point. Their hallmarks are widely known; they often include poor or strange grammar, suspicious links, suggested connections with companies or people, or random individuals asking for help in some capacity.

Side Channel Attack: Everything You Need To Know

Side Channel Attack: Everything You Need To Know

Every year, millions of people get victimized by data breaches. Criminals steal their data from the network environments of organizations, vendors, providers, institutions, and governments; with ever-increasing frequency, cybercriminals are making big moves in the cyber wars—and making billions of dollars. 

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

Free Identity Exposure Scan
Instantly and Securely Check if Your Personal Information is Exposed on the Dark Web or Sold by Data Brokers
Please enter first name
Please enter last name
Please select a state
Close
Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an age
Please enter an email address
Close