Exploit

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

Exploit

Ejziponken
ics
Reply | Threaded
Open this post in threaded view
|

Re: Exploit

ics
It's just classic point_servercommand related issue, nothing big.

-ics

Ejziponken - kirjoitti:

_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers
Reply | Threaded
Open this post in threaded view
|

Re: Exploit

narry
You sure? He's implying it's a proper buffer overflow. There are a lot of them it's Steam

On Sat, Jun 27, 2015 at 12:35 PM, ics <[hidden email]> wrote:
It's just classic point_servercommand related issue, nothing big.

-ics

Ejziponken - kirjoitti:
http://www.reddit.com/r/GlobalOffensive/comments/3b9vgo/there_is_currently_a_customfiles_related/


Hm.. :P


_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers


_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers


_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers
Reply | Threaded
Open this post in threaded view
|

Re: Exploit

Nathaniel Theis
In reply to this post by Ejziponken
The exploit is unrelated to point_servercommand. It affects all Source games I've tried it in, most likely including DOTA 2, L4D2, and Garry's Mod (I have confirmed working PoCs for CS:GO and TF2 that launch calc.exe or a TCP bindshell on clients).

It should get fixed soon.

_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers
Reply | Threaded
Open this post in threaded view
|

Re: Exploit

Левинчук Федор
How to fix it?

Sended from galaxy note

15:32, 28 июня 2015 г., Nathaniel Theis <[hidden email]>:
The exploit is unrelated to point_servercommand. It affects all Source games I've tried it in, most likely including DOTA 2, L4D2, and Garry's Mod (I have confirmed working PoCs for CS:GO and TF2 that launch calc.exe or a TCP bindshell on clients).

It should get fixed soon.

_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers


_______________________________________________
Csgo_servers mailing list
[hidden email]
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/csgo_servers