Callvote ET exploit - the truth
Hi,
in regard to the news: Callvote + q3fill Bugfix I would like to enlight the problem. The callvote exploit really exist and allow the attacker execute any server command. For example hacker can change rcon password or disable lua patches and crash server via ws exploit. But! Attacker has to use a hacked client and pass the vote. I don't have any informations that this bug works with ACpro 2.1, altough i made a quick fix ( more updates/features coming soon ).
Of course at the moment CB, ESL haven't already updated their configs with new combinedfixes.lua by Reyalp (am i right?). There is a problem with the newest fixed code - propably not working at all. So i made a corrected version. Here u go a link for lua modules: http://acpro.wolfteam.pl//category.php?id=1
If You are an admin of CB/ESL please follow this discussion: http://bani.anime.net/banimod/forums/viewtopic.php?p=66691#66691
regards
in regard to the news: Callvote + q3fill Bugfix I would like to enlight the problem. The callvote exploit really exist and allow the attacker execute any server command. For example hacker can change rcon password or disable lua patches and crash server via ws exploit. But! Attacker has to use a hacked client and pass the vote. I don't have any informations that this bug works with ACpro 2.1, altough i made a quick fix ( more updates/features coming soon ).
Of course at the moment CB, ESL haven't already updated their configs with new combinedfixes.lua by Reyalp (am i right?). There is a problem with the newest fixed code - propably not working at all. So i made a corrected version. Here u go a link for lua modules: http://acpro.wolfteam.pl//category.php?id=1
If You are an admin of CB/ESL please follow this discussion: http://bani.anime.net/banimod/forums/viewtopic.php?p=66691#66691
regards
most pl ppl are a bit stupid but nvm ;) have a look @ Pbbans ;)
NN
Give me the link to thread @ pbbans...
and he needs the vote to pass
(at least at rtcw 1.0)
its 365 u fuckin cockmongler!