Jump to content

[Found] A little exploit

Exygo
 Share

Recommended Posts

  • Active Member
Exygo Experienced

Exygo 1050

Posted
  • Active Member
Posted

I just want to inform you guys(if you didn't know) that the function net.SendGuildPostCommentPacket can be used to increase the size of guild_comment table, so good luck to fix it in your server.

qnZf3zg.png

https://www.youtube.com/channel/UCQ8mAeda9TWq6SsTzB53emw/videos

Link to comment
Share on other sites
  • Replies 5
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

Kirosachi
Kirosachi

This is not "exploit", already exist more things like this on communication with packets clientside-serverside, some mistakes from ymir to check something. But make a small check for arguments wh

Kirosachi
Kirosachi

Damn, what is wrong? I give solutions for people, and i'm wrong? I was want to say: "You, they, them find this "exploit" with illumina.", a lot a people what have illumina have this function in o

Kirosachi Rookie

Kirosachi 8

Posted
Posted

This is not "exploit", already exist more things like this on communication with packets clientside-serverside, some mistakes from ymir to check something.

But make a small check for arguments what was sended, and "exploit" is fixed in 3 lines. 

std::string str = argument before sended
	#define MAX_LEN 50
	unsigned size;
	
	// Choice method to calculation size
	size = str.size();
	size = str.length();
	size = strlen(str.c_str());
	
	// Method 1
	if (size > MAX_LEN)
		return false;

	// Method 2
	if (size > MAX_LEN)
	{
		str.resize(MAX_LEN);
		ch->ChatPacket(CHAT_TYPE_INFO, "std::string str = %s", str.c_str());
	}

 

  • Love 1
Link to comment
Share on other sites
  • Active Member
Exygo Experienced

Exygo 1050

Posted
  • Author
  • Active Member
Posted

This is just a notice for guys who didn't observed this ymir mistake, and is not about string length, you can let multiple accounts with modified py files with  net.SendGuildPostCommentPacket  in OnUpdate

qnZf3zg.png

https://www.youtube.com/channel/UCQ8mAeda9TWq6SsTzB53emw/videos

Link to comment
Share on other sites
  • Active Member
Exygo Experienced

Exygo 1050

Posted
  • Author
  • Active Member
Posted
17 minutes ago, Kirosachi said:

So what is so hard to fix? make a timer global from server and not give permission to do something when current timer is < then global timer. 

Also people was used this net.SendGuildPostCommentPacket in OnUpdate for illumina, because not was make good refresh.

WTF is wrong with you ?

qnZf3zg.png

https://www.youtube.com/channel/UCQ8mAeda9TWq6SsTzB53emw/videos

Link to comment
Share on other sites
Kirosachi Rookie

Kirosachi 8

Posted
Posted

Damn, what is wrong? I give solutions for people, and i'm wrong?

I was want to say: "You, they, them find this "exploit" with illumina.", a lot a people what have illumina have this function in onupdate :D.

I know, is not related with topic, but from where they find this.

I was want to say "this is not exploit", and need to change name title, you create confusion ugly for owner's.

Exist a lot a things like this if you run on onupdate functions what sended packet, so this informations is not new. ^^

#english #shit

  • Love 1
Link to comment
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to topic listing

Announcements



×
×
  • Create New...

Important Information

Terms of Use / Privacy Policy / Guidelines / We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.