Valve warned of potential Steam exploit

Security firm publishes report on alleged security holes

Revuln, a security research and solutions company, has published a report detailing an exploit in Valve's Steam platform that could theoretically be used for malicious purposes.


According to the report, the Steam Browser Protocol can be manipulated remotely, allowing third-parties to "perform silent Steam Browser Protocol calls".

In addition to vulnerabilities found within the Steam platform, the report also identifies issues with the Source and Unreal Engine which, given their ubiquity in game development, could be a potential area for concern.

Although the report doesn't mention any immediately worrying implications, it implies that the security hole could be used as a vector for more serious attacks.

Steam, the leading digital platform on PC, serves more than 40 million active customers.

Valve recently began testing of the Linux version of its Steam client.