File upload exploit fix
2 Attachment(s)
v 1.0.0.2
Changes: * Attempt to prevent crashes by only removing hooks when absolutely necessary * Update with a workaround for the delete file exploit. This plugin will prevent the recently discovered file upload exploit from working on your server. Installation is just like a normal SourceMM plugin, except you need to create a "exploits" directory in your mod directory (ex: cstrike/exploits). Any files that are attempted to be uploaded will be placed here. This will prevent any file writes using valve's standard interface. This will break things such as SourceTV demos, sprays, and possibly some SM plugins. Normal log files will remain working Source code, and binaries are in the attachment. Thanks to psychonic for the windows builds. Donate |
Re: File upload exploit fix
omg i love you guys! (not gay)
|
Re: File upload exploit fix
For those interested:
If you put the file in our addons folder, the VDF contents would look like this: Code:
"Metamod Plugin" |
Re: File upload exploit fix
Great fix, thanks.
|
Re: File upload exploit fix
Anyone else getting crashes with this who has SourceBans? it seems to be catching my updated admin files from sourcebans as the exploit and the server crashes
|
Re: File upload exploit fix
Using Sourcebans here and no crashes.
|
Re: File upload exploit fix
This doesn't work right on windows.
* Blocks creation of sprays. * Blocks sourcemod from creating files. * Blocks creation of sourcetv demo recordings. Between these three, the server is much more prone to crashes. |
Re: File upload exploit fix
Me too it seems, I do enjoy sprays...
|
Re: File upload exploit fix
1 Attachment(s)
Crash as a result of this?
|
Re: File upload exploit fix
Quote:
|
All times are GMT -4. The time now is 09:04. |
Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.