Login:  Password:   Remember?  
Show Quick Gamelist
Games:397  Guilds:2,006
Members:1,145,742  Online:0
Guests:0  Posts:3,121,603
<a href="http://www.gameads.com/" target=_blank>Game Ads</a> banner requires iframes.
Istaria: Chronicles of the Gifted
Artifact Entertainment | http://www.istaria.com/
RPG | Genre:Fantasy | Status:Final  | Publisher:Virtrium
Distribution:Download | Retail Price:Free | Pay Type:Subscription
Desktop Client | System Req: PC | ESRB:T
Overview Features Forums Links News Ratings Resources Reviews Screenshots

Istaria: Chronicles of the Gifted News - Client Vulnerability Report

Posted by Dana Massey on Oct 31, 2006  | 42 comments in our forums

EI Interactive's troubles continue. A report was filed on August 24th, 2006 and sent to EI Interactive and previous owners Tulga Games that chronicled all the ways their client was vulnerable to outside intruders, a source within the original development team confirms. They also notified MMORPG.com of this report.

After a 60 day moritorium without action, the report was released online today. EI Interactive then took their game servers offline and replaced the login screen with an new version as seen here. Since then, their servers have been up and down. It is unclear whether the vulnerabilities still exist based on today's action.

Horizons uses a SOAP API to interchange data/commands between the Application Server and several Clients. The API doesn't verify the source which does trigger functions, which opens up multiple abuse possibilities.

A vulnerability has been discovered in the Horizons SOAP API that allows an attacker to modify account and character information such as:

- change payment and subscription information
- create bogus/non-charged/unverified billings
- rename characters
- retrieve sensitive server/shard information
- activate/ban the account
- change account status like trial,
- add promotions (free, military, other promotions etc.)
- change/add keys

You can read the full report here.

Read more Exclusive News...

Our Rating
7.1
User Rating: 7.0
Popular Features:
The List : Five Under the Radar MMOs Column added on Tuesday November 03
MMORPG.com's Jon Wood takes over this list this week, taking a look at five MMOs... Read More
The List : Five Ways to Know You're Just Not That Into It Column added on Tuesday November 24
MMORPG.com's Jon Wood uses this week's list to explore five ways that a player can... Read More
The List : Top 5 Things Coming In WoW Patch 3.3 Column added on Tuesday November 10
We look at the top five things players should be drooling about in Patch 3.3... Read More
The List : Ten MMOs and Their Place In History Column added on Wednesday November 18
MMORPG.com's Jon Wood returns this week with another list, this time taking a look at... Read More
Star Trek Online : Exclusive Screenshots, Part Three Media added on Tuesday November 03
Cryptic provides us with three exclusive peeks at Star Trek Online. This week we get... Read More
Latest News:
Istaria: Chronicles of the Gifted : Dralnok’s Doom: New High Level Content Reported on Nov 23, 2009
MMORPG.com Istaria expert Erin McManaway writes this look at Dralnok's Doom after receiving a tour... Read More
Istaria: Chronicles of the Gifted : When Community Really Counts Reported on Nov 04, 2009
MMORPG.com Istaria Correspondent Erin McManaway writes this look at the tight knit community that exists... Read More
Istaria: Chronicles of the Gifted : Name Change Reported on Apr 15, 2008
The team at Vitrium, the company that most recently took over Horizons: Empire of Istaria... Read More
Istaria: Chronicles of the Gifted : Ownership Change Interview Reported on Sep 17, 2007
Horizons, a game that has changed ownership a number of times in the last year... Read More
Istaria: Chronicles of the Gifted : Billing Issues Not Resolved Reported on Sep 10, 2007
Virtrium has announced on the Horizons community forums that they have been unable to resolve... Read More
Latest Games Added:
Grand Fantasia
Bright Shadow
Gates of Andaron
Heroes of Gaia
Faunasphere