Search found 3 matches

by BSzili
Mon Feb 22, 2010 2:54 pm
Forum: Freewares, game mods, Java, C++, OCaml & Maths
Topic: BaseJKA Security Fix
Replies: 152
Views: 174645

Re: BaseJKA Security Fix

Oookay, i added a check for \r too, and i think it did the trick. Thanks a lot for drawing my attention to it! ;)
by BSzili
Mon Feb 22, 2010 10:53 am
Forum: Freewares, game mods, Java, C++, OCaml & Maths
Topic: BaseJKA Security Fix
Replies: 152
Views: 174645

Re: BaseJKA Security Fix

Sorry for bothering you with old stuff :) In fact i already tried to fix the problem myself, but checking against \n had no effect. Maybe because they're using \r :huh
by BSzili
Sun Feb 21, 2010 11:57 pm
Forum: Freewares, game mods, Java, C++, OCaml & Maths
Topic: BaseJKA Security Fix
Replies: 152
Views: 174645

Re: BaseJKA Security Fix

I know you stopped working on this mod, but aluigi discovered a very serious exploit, which allows you to change the server's rcon password, or any cvar via voting. http://aluigi.org/poc.htm#q3cbufexec There's a fix for it too: http://bugzilla.icculus.org/attachment.cgi?id=1723&action=edit People ke...