New Mohaa Exploit as hit many servers

Started by ProStock, May 24, 2006, 05:51:34 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Rookie One

#1
May 24, 2006, 06:02:38 PM
Excuse me, but how are we supposed to recommend anything given this little information?
here's my stuff - inequation.org | here's where I work - thefarm51.com

Elgan {sfx}

#2
May 24, 2006, 09:18:30 PM
sorry i , i did get the e-mail., i didnt reply as i was still looking at it.

   

   the exploit itself looks as if it exploits the same code as the first BOF, which has a patch, the patch ( for windows) doesnt work for this? even tho they both seem to exploit the same code.

   

   

   i also didnt have mich time to go testing and seing what happens.

   

   im also dont know if its true that they get full control. SOme admins go bad. THe last exploit in that peice of code just crashed the server.

   

   

   EDIT: roockie, ill pm u the details if u want, prob can be trusted.

Elgan {sfx}

#4
May 25, 2006, 12:05:04 AM
tbh, i dont think that an exploit in mohaa gave them remote access ability?

   

   i have to think about this. Do u have a firewall?

Rookie One

#5
May 25, 2006, 02:09:52 PM
It is possible, Elgan. Id software had a strong reason to release patches for all Q3 games (http://www.idsoftware.com">see here, news from May 8th), they fixed a BOF vulnerability among other bugfixes (the bugs have been discovered by some guys from the gaming community). Too bad they didn't release the patched Q3 source.
here's my stuff - inequation.org | here's where I work - thefarm51.com

Rumphf

#6
June 27, 2006, 06:27:57 AM
Doesn't the new BOF patch file fix this?  My (WINDOWS SERVER based MOHAA SPEARHEAD)server was being crashed 16 to 20 times a day, but since I put this BOF patch on the server, I don't get crashed much at all.  Maybe once a day or once a week still.  When "they(?)" crash me now, the server won't auto-restart anymore. It says it is in an infinite loop.  So it doesn't shutdown to auto-restart and the players can't connect to play the game.  Someone once gave me a edited server auto-restart file that checked for this infinite loop scenario and if it detected it, it would restart the server as if it were crashed (or shutdown).

   

   My new issue is that someone is in the spectator mode and kills people in the game.  Then for every kill in the game, it registers X10 (1 kill = 10 kills).  I went into the game and seen some guy with over 400 kills in less than 4 minutes in the game.  Does anyone have or know where I can get a fix for this?

   

   Also, another issue is that someone is somehow doing a map restart serveral times in the game.  One after the another and won't stop.  Somehow I changed the map and it seems to stop, but this happens at least once a day too. Question: is this the hexed out gamexl86.dll file fix for spearhead available?

   

   Any ideas?

   

   Rumphfy

Elgan {sfx}

#7
June 27, 2006, 07:39:17 AM
try here

   

   http://hosted.filefront.com/1stregiment/1440920">http://hosted.filefront.com/1stregiment/1440920

   

   u may have to ask hal if the reload map patch has also a fix for the spec killing bug, or u can open in a hex editor and check yourself.
Print
Go Up Pages1
User actions