TrueCombat
http://www.truecombatelite.com/forums/

*Important* Server bugfix for clientdisconnect exploit
http://www.truecombatelite.com/forums/viewtopic.php?f=4&t=2140
Page 1 of 1

Author:  SnaKeS3K [ Sun Jul 25, 2010 2:21 pm ]
Post subject:  *Important* Server bugfix for clientdisconnect exploit

serveradmins update your servers if you dont want people to get ur server empty within a second :)
FIX
pretty self-explanatory, download the etded.x86-2.60b ->rename it to etded.x86 and replace your old etded with it (server should obv be shut down first)

the bug works on all et versions and mods, so an update is highly recommended (coroner already informed 2 days ago, but doesnt matter now since theres a fix). and for curious people, no im not gonna post what kind of bug it is or how it works ;) , use google if u really wanna know.

Author:  Baal [ Sun Jul 25, 2010 4:49 pm ]
Post subject: 

Thanks for the heads up!

Author:  ]Wo0[ [ Sun Jul 25, 2010 6:15 pm ]
Post subject: 

Manual Fix ->

1) Open etded binary in a binary editor.
2) Find the string
Code:
"SV_WWWDownload: unexpected wwwdl %s"

3) Change the %s to %x

kinda useless with what snake posted but i think its also good way to fix.

Author:  [FanT]AsthMaTiK [ Sun Jul 25, 2010 6:50 pm ]
Post subject: 

The patch is only the change of one byte :P

Code:
diff -a ./etded.x86 ./etded.x86-2.60b
1299c1299
< SV_WWWDownload: unexpected wwwdl %sWARNING: dupe wwwdl ack from client '%s'
---
> SV_WWWDownload: unexpected wwwdl %xWARNING: dupe wwwdl ack from client '%s'


You can do it by putting a 'x' instead of a 's' at offset 0x0009b9ba

For the ones who are using Windows version of the server ETDED.exe (what an idea :P), put a 'x' instead of a 's' at offset 0x0007d7da ;)

It seems to be a Format string attack, it will display an unsigned int instead of a string ^^

Thanks SnaKeS3K :)

EDIT:
Next time I will start to write a post, I will avoid to go and take my meal in the meantime :P
]Wo0[ was faster than me :P

Author:  SnaKeS3K [ Sun Jul 25, 2010 7:45 pm ]
Post subject: 

ye i didnt post the manual fix as the majority wouldnt know what to do with it anyway even if its just 1 byte^^
here's a fixed etded for the servers running windows (lol). tested and works for me.

Author:  [FanT]AsthMaTiK [ Sun Jul 25, 2010 8:47 pm ]
Post subject: 

I hope if someone is server admin, he has knowledge enough about to use a hexa editor (and about some security basics ^^)

More simple, the use of this sed command to avoid to do it manually.
Code:
sed -i.bak -r -e 's/(SV_WWWDownload: unexpected wwwdl %)s/\1x/g' ./etded.x86

And it works for the Windows version too (if you replace by ./ETDED.exe of course ^^)

Author:  Baal [ Sun Jul 25, 2010 9:15 pm ]
Post subject: 

Not if your only interest is having a game server, then no, Snake took best approach. :)

Author:  WingZero [ Mon Jul 26, 2010 2:45 am ]
Post subject: 

SnaKeS3K wrote:
ye i didnt post the manual fix as the majority wouldnt know what to do with it anyway even if its just 1 byte^^
here's a fixed etded for the servers running windows (lol). tested and works for me.


Can link to a more reliable/professional source http://www.crossfire.nu/?x=forum&mode=item&id=33891 that created both the linux and windows fix.

Author:  SnaKeS3K [ Mon Jul 26, 2010 4:09 am ]
Post subject: 

same link for the linux file i posted, and the windows fix is practically the same as well (compared them, besides dinius isnt really someone i'd trust 100%^^). anyway, doesnt really matter. obv all files are clean since only 1 byte was changed.

Page 1 of 1 All times are UTC
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/