WordPress database error: [Table 'img_wp793.wpt1_rank_math_redirections_cache' doesn't exist]
SELECT * FROM wpt1_rank_math_redirections_cache WHERE ( object_id = 3225 and object_type = 'post' ) OR BINARY from_url = 'dark-souls-goes-offline-to-investigate-critical-security-flaw.html' ORDER BY object_id DESC

WordPress database error: [Table 'img_wp793.wpt1_rank_math_redirections' doesn't exist]
SELECT * FROM wpt1_rank_math_redirections WHERE status = 'active' AND ( sources like '%a:2:{s:7:\"pattern\";s:66:\"dark-souls-goes-offline-to-investigate-critical-security-flaw.html\";s:10:\"comparison\";s:5:\"exact\";}%' or sources like '%dark%' or sources like '%souls%' or sources like '%goes%' or sources like '%offline%' or sources like '%to%' or sources like '%investigate%' or sources like '%critical%' or sources like '%security%' or sources like '%flaw%' or sources like '%html%' ) ORDER BY updated DESC

WordPress database error: [Table 'img_wp793.wpt1_rank_math_redirections' doesn't exist]
SELECT * FROM wpt1_rank_math_redirections WHERE status = 'active' ORDER BY updated DESC

Dark Souls Goes Offline to Investigate Critical Security Flaw - 24img
December 4, 2023

24img

Welcome to World technology

Dark Souls Goes Offline to Investigate Critical Security Flaw

From Software has taken down the servers for every Dark Souls game on PC to investigate a vulnerability that can be exploited to enable remote code execution (RCE) on a victim’s system.

Dexerto reports that the flaw is said to lie in the networking code used by Dark Souls: Prepare to Die Edition, Dark Souls: Remastered, Dark Souls 2, Dark Souls 2: Scholar of the First Sin, and Dark Souls 3. It’s also believed to be present in Elden Ring, which From Software is set to release on Feb. 25.

Twitter user “SkeleMann” publicly disclosed this vulnerability on Jan. 22 and said it “could brick your PC, let your login information be shared, or execute programs in the background.” They advised Dark Souls players to go offline until the security problem was addressed.

The creators of Blue Sentinel, a Dark Souls 3 mod that claims “it will protect you from malicious cheats, flag players who use them, and allow you to kick them from your world,” actually released an update related to this vulnerability before From Software publicly acknowledged it.

SkeleMann reports that a similar mod for Dark Souls 2 called Blue Acolyte is also being updated to defend against this vulnerability. In the meantime, Dark Souls players on PC will have to make do without player-versus-player (PVP) elements until the servers are brought back online.

Recommended by Our Editors

From Software says the PVP servers for Xbox and PlayStation players—the company doesn’t specify which titles or console generations—remain online. It’s not clear if that’s because of differences in the networking code or because of the consoles’ other security measures.

Like What You’re Reading?

Sign up for Security Watch newsletter for our top privacy and security stories delivered right to your inbox.

This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.