All times are UTC




Post new topic Reply to topic  [ 9 posts ] 
Author Message
 Post subject: *Important* Server bugfix for clientdisconnect exploit
PostPosted: Sun Jul 25, 2010 2:21 pm 
Offline
Master
Master

Joined: Sat Sep 02, 2006 4:03 pm
Posts: 398
Location: Croatia/Germany
serveradmins update your servers if you dont want people to get ur server empty within a second :)
FIX
pretty self-explanatory, download the etded.x86-2.60b ->rename it to etded.x86 and replace your old etded with it (server should obv be shut down first)

the bug works on all et versions and mods, so an update is highly recommended (coroner already informed 2 days ago, but doesnt matter now since theres a fix). and for curious people, no im not gonna post what kind of bug it is or how it works ;) , use google if u really wanna know.

_________________
=MaveXII=|WL Admin |IRC:#mave-clan
Image
*Clan Movie #2*|xfire: snakes3k


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 4:49 pm 
Offline
Master
Master
User avatar

Joined: Thu Jul 13, 2006 10:19 am
Posts: 266
Location: Louisiana, USA
Thanks for the heads up!


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 6:15 pm 
Offline
Master
Master
User avatar

Joined: Tue Jun 16, 2009 5:36 pm
Posts: 477
Manual Fix ->

1) Open etded binary in a binary editor.
2) Find the string
Code:
"SV_WWWDownload: unexpected wwwdl %s"

3) Change the %s to %x

kinda useless with what snake posted but i think its also good way to fix.

_________________
Image
xFire : wootheyetti


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 6:50 pm 
Offline
Sharp Shooter
Sharp Shooter
User avatar

Joined: Sat Jun 19, 2010 7:16 pm
Posts: 48
Location: France
The patch is only the change of one byte :P

Code:
diff -a ./etded.x86 ./etded.x86-2.60b
1299c1299
< SV_WWWDownload: unexpected wwwdl %sWARNING: dupe wwwdl ack from client '%s'
---
> SV_WWWDownload: unexpected wwwdl %xWARNING: dupe wwwdl ack from client '%s'


You can do it by putting a 'x' instead of a 's' at offset 0x0009b9ba

For the ones who are using Windows version of the server ETDED.exe (what an idea :P), put a 'x' instead of a 's' at offset 0x0007d7da ;)

It seems to be a Format string attack, it will display an unsigned int instead of a string ^^

Thanks SnaKeS3K :)

EDIT:
Next time I will start to write a post, I will avoid to go and take my meal in the meantime :P
]Wo0[ was faster than me :P

_________________
Image
Site de la Communauté Française de TC:E
Server/Machine Admin for Teams |AES| - =]NyX[= - =]X-BlooD[=


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 7:45 pm 
Offline
Master
Master

Joined: Sat Sep 02, 2006 4:03 pm
Posts: 398
Location: Croatia/Germany
ye i didnt post the manual fix as the majority wouldnt know what to do with it anyway even if its just 1 byte^^
here's a fixed etded for the servers running windows (lol). tested and works for me.

_________________
=MaveXII=|WL Admin |IRC:#mave-clan
Image
*Clan Movie #2*|xfire: snakes3k


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 8:47 pm 
Offline
Sharp Shooter
Sharp Shooter
User avatar

Joined: Sat Jun 19, 2010 7:16 pm
Posts: 48
Location: France
I hope if someone is server admin, he has knowledge enough about to use a hexa editor (and about some security basics ^^)

More simple, the use of this sed command to avoid to do it manually.
Code:
sed -i.bak -r -e 's/(SV_WWWDownload: unexpected wwwdl %)s/\1x/g' ./etded.x86

And it works for the Windows version too (if you replace by ./ETDED.exe of course ^^)

_________________
Image
Site de la Communauté Française de TC:E
Server/Machine Admin for Teams |AES| - =]NyX[= - =]X-BlooD[=


Top
 Profile  
 
 Post subject:
PostPosted: Sun Jul 25, 2010 9:15 pm 
Offline
Master
Master
User avatar

Joined: Thu Jul 13, 2006 10:19 am
Posts: 266
Location: Louisiana, USA
Not if your only interest is having a game server, then no, Snake took best approach. :)


Top
 Profile  
 
 Post subject:
PostPosted: Mon Jul 26, 2010 2:45 am 
Offline
Master
Master

Joined: Sun Dec 25, 2005 2:57 am
Posts: 250
Location: California, United States
SnaKeS3K wrote:
ye i didnt post the manual fix as the majority wouldnt know what to do with it anyway even if its just 1 byte^^
here's a fixed etded for the servers running windows (lol). tested and works for me.


Can link to a more reliable/professional source http://www.crossfire.nu/?x=forum&mode=item&id=33891 that created both the linux and windows fix.

_________________
[00:29] [MASSA]Scarsraider: we keep TCE alive with our BC
[00:30] [MASSA]Scarsraider: we just got posts on our forums saying people want to play MASSA
[00:31] [MASSA]Scarsraider: but without massa bc this game would be dead
[00:31] [MASSA]Scarsraider: and u know it
[00:35] [MASSA]Scarsraider: probably every TCE player has at one point played on our BC


Top
 Profile  
 
 Post subject:
PostPosted: Mon Jul 26, 2010 4:09 am 
Offline
Master
Master

Joined: Sat Sep 02, 2006 4:03 pm
Posts: 398
Location: Croatia/Germany
same link for the linux file i posted, and the windows fix is practically the same as well (compared them, besides dinius isnt really someone i'd trust 100%^^). anyway, doesnt really matter. obv all files are clean since only 1 byte was changed.

_________________
=MaveXII=|WL Admin |IRC:#mave-clan
Image
*Clan Movie #2*|xfire: snakes3k


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 9 posts ] 

All times are UTC


Who is online

Users browsing this forum: Google [Bot] and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
cron
Style created by © Matti, gry komputerowe, reklama sem reklama seo

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group