[quote]Those dirty Koreans, always ruining the internet for others!! [/quote]

Don't hate us because we have phat broadband... :)

[q]Is Mark Rein prone to these foot-in-mouth episodes? Nothing screams bad PR like threatening to sue the company that told you about the problem over [b]three month/b] prior to announcing it to the world at large.

Feh.[/q]When he was demonstrating UT2003 on German TV before it was released, he kept telling the [male] hosts "You play like girls!" which didn't go down that well online...

unreal = the gay!

Want another kicker? I was reading another thread (about 2186 problems in UT2K3), when Mark Rein made his 'we fucked up' comment. It was not clear at all that this comment referred to the security hole (which was not very widespread knowledge at that point), and in fact several users questioned just exactly what Mr. Rein was talking about.

Way to go Epic. You 'fucked up' twice.

I'll fetch the link to the thread in question when I get home tonight.

Is Mark Rein prone to these foot-in-mouth episodes? Nothing screams bad PR like threatening to sue the company that told you about the problem over [b]three month/b] prior to announcing it to the world at large.

Feh.

Chalk another one up for the single player experience.

http://www.securityfocus.com/popups/forums/bugtraq/intro.shtml

Can I please get an URL to bugtrack?
Thx in advance.

Actually "discovered" last July. Bugtraq's archives has the full exploit listed.

From bugtraq this morning:
[q]
Thor,

I have sent your company an apology for those completely unfortunate
comments that I sincerely regret. We did provide an official statement
and I was not, at the time, aware that my verbal reaction, in a moment of
shock and surprise, was being captured for the article.

The comment was a complete over-reaction to seeing the list of games
including future games that have not yet been published. It had nothing
to do with the security issues themselves, the validity of the report, or
the way Pivx presented it to us. Pivx gave us more than fair enough
warning of the bugs and we simply failed to fix them in the allotted
time. We released a statement last week to the Unreal community
indicating that "we fucked up" in not addressing these concerns within
the given time and that we were already testing a patch with the security
issues corrected. In addition the official statement we gave pointed out
that we were fixing the holes and that the Pivx report was fair and
accurate. Licensees were already provided with the source code for the
security fixes.

Again this was a moment-of-stupidity reaction and I sincerely apologize
to Pivx and the entire security community. Epic has already stated that
we will take these matters far more seriously in the future.

Mark Rein,
Epic Games Inc.[/q]

Wunduh if it will cost more than ten dollah to fix

Those dirty Koreans, always ruining the internet for others!!

Originally Posted by judoman
Snipped From Blue\'s News:...]
More on Unreal Security [February 11, 2003, 1:50 PM EST] - 47 Comments]
TechTV\'s \'Unreal\' Security Risk (thanks Brian) is another article on the recently-revealed security holes in Unreal engine that describes a somewhat different tone from Epic than our initial response from Mark Rein (story) in quoting Mark\'s reaction to the allegation by security firm PivX that this leaves client machines vulnerable:

[q] \"This is slanderous,\" he says. \"They\'ve taken this too far. We\'re getting our lawyers involved with this.\" Rein says the only vulnerabilities he knows about affect \"Unreal\" servers. Rein denies that any holes affect the machines of end users or \"Unreal\" players. \"I don\'t understand how they could [run code on a user\'s machine],\" he says. \"From what I understand, this only has to do with servers and can only perform a DDOS attack.\"[/q]

The story also quotes Tim Sweeney on the subject of the patch, which he hopes will be released tomorrow:

[q] \"Last Wednesday, we produced an \'Unreal Tournament 2003\' patch we\'ve had in testing that solves all of the reported client-side \'malicious code\' exploits and server exploits. We also immediately made this available to all of the Unreal Engine licensees for incorporation into their future patches and full game releases,\" Sweeney says. \"The patch is in testing with the community, and release is imminent. We\'re aiming for Wednesday unless testing reveals additional problems. We\'re testing as fast as we can.\"[/q]

Update: A subsequent post to our forums from Mark Rein apologizes for this earlier outburst, saying: \"have sent Pivx an apology for the completely out-of-line and unfortunate comments which I sincerely regret. We did provide an official statement and I was not, at the time, aware that my verbal reactions, in a moment of shock and surprise at seeing unfinished licensee games on the list, were also being captured for the article.\" Additionally, the quotes used above now seem to have been removed from the source article. Finally, Games maker not suing over bug alert (thanks Mike Martinez) is a CNET article describing the outcome of all this.

smart title

Don't you mean Koreans AG#1?

HAcked_By_Chinese ^__^

kekekeke